Master advanced exploitation and defensive techniques to build hardened cloud native infrastructure.
Cloud native infrastructure is changing rapidly. It has been difficult to keep up with latest changes, let alone secure them. More often infrastructures are built with default configurations that are open to security attacks.
In this attack and defence workshop, we master skills in finding security misconfiguration in AWS, Kubernetes and Docker. We learn root cause behind these misconfigurations. We go one step further and attack the weaknesses to understand the impact of each and every insecure configuration. We follow best industry practices to harden the infrastructure. We learn how to actively monitor for insecure configurations in CICD.
A quick introduction to cloud infrastructure security and tooling.
4C's of Cloud Native Security: Code, Container, Cluster, and Cloud
Why we have many insecure environments
Defence in depth
Least privileges
Quick introduction to Terraform
Build a rapid, effective and actionable threat model early during development
Trust boundary analysis
Five + three threat actors
Discover threats
Common insecure assumptions that are exploited
Rapid Threat Modelling
STRIDE
SecDim's Threat Thinking Matrix
Build a threat model in an attack and defence game
Hack your own program exploitation lab
Containers are second layer of defence in a cloud native security. Learn how to identify, exploit and harden insecure containers.
Docker-in-docker exploitation
Compromise host via insecure container
Kernel namespaces and capabilities
Privileged containers and RCE
Root containers vs root in the container
Insecure default container capabilities
SUID binaries in container
Hardening containers
Container security scanning in CICD
Secure configuration of AWS resources is complex and can be easily overlooked. Learn how an attacker can exploit various AWS services into privilege escalation or remote command execution. Learn building hardened terraform deployments to eliminate insecure configurations.
AWS IAM at the heart of security issues
IAM rollback
IAM assume role
IAM attachment
Malicious SQS queue
Insecure Lambda
Misconfigure S3 bucket
Unsegregated SNS
EC2 and SSRF
Terraform AWS hardening best practices
AWS security scanning in CICD
Kubernetes cluster components does not come with security by default. Learn how an attack can exploit default deployments into remote command execution. Learn how to build hardened deployments.
Privileged container in pod
Insufficient authorisation and authentication
Resource Exhaustion by a malicious service
Insecure Pod policies
Insecure Network policies
Harden k8s components
K8s security scanning in CICD
4 half-days live workshop
Step-by-step delivery by a highly qualified instructor
100+ self-pace git-based labs
Access to an exclusive support forum
Full access to workshop slide content
You will also get
Practice schedule and mentoring
Standard pathway program
Assessment of your practices
Free attempt to obtain SecDim Certification in DevSecOps and earn up to 20 hours of professional education
We forget almost 60%
of new information within a week!
We give you practice schedule
and mentorship in a three month pathway
so that DevSecOps becomes your habit.
Our workshops run only a few times in the year. Don't miss out.
Defensive Programming workshop gives you outstanding technical skills
and analytic thinking that are
in great demand
by top companies.
Secure
SecDim Certification in DevSecOps
to open doors to the most interesing security roles all over the world.
