all InfoSec news
Stealing OAuth Github Tokens with AWS CodeBuild
June 28, 2023, 1 p.m. | John Hammond
John Hammond www.youtube.com
You can learn more about Carlos Polop, Ignacio Dominguez or the security audits and assessments that HALBORN performs at https://j-h.io/halborn
Check out the vulnerability disclosure writeup from HALBORN: https://www.halborn.com/blog/post/halborn-discovers-and-discloses-vulnerability-in-aws-code-build
00:00 Preview
00:20 Introduction with Carlos & Ignacio
01:00 AWS CodeBuild Background
02:12 CodeBuild and GitHub Mishaps
05:12 Execute CodeBuild within a Docker Container …
amp aws cloud cloud service container credentials demo docker github halborn introduction man-in-the-middle oauth preview service stealing tokens
More from www.youtube.com / John Hammond
Hackers Abuse Zero-Day Exploit for CrushFTP
1 week, 1 day ago |
www.youtube.com
This Windows File Steals Passwords
1 week, 3 days ago |
www.youtube.com
Finding WEIRD Devices on the Public Internet
1 week, 5 days ago |
www.youtube.com
Government Unveils Malware Analysis Tool, But...
2 weeks, 1 day ago |
www.youtube.com
Bypassing SmartScreen on Web Browsers
2 weeks, 2 days ago |
www.youtube.com
Remote Code Execution Vulnerability in Telegram
2 weeks, 4 days ago |
www.youtube.com
I Hacked The Cloud: Azure Managed Identities
3 weeks, 2 days ago |
www.youtube.com
Scraping Dark Web Sites with Python
3 weeks, 4 days ago |
www.youtube.com
Jobs in InfoSec / Cybersecurity
Senior Security Officer
@ eSimplicity | Remote
Senior - Automated Cyber Attack Engineer
@ Deloitte | Madrid, España
Public Key Infrastructure (PKI) Senior Engineer
@ Sherwin-Williams | Cleveland, OH, United States
Consultant, Technology Consulting, Cyber Security - Privacy (Senior) (Multiple Positions) (1502793)
@ EY | Chicago, IL, US, 60606
Principal Associate, CSOC Analyst
@ Capital One | McLean, VA
Real Estate Portfolio & Corporate Security Lead
@ Lilium | Munich