05-25, 10:20–11:00 (Europe/Stockholm), Main stage
Let's take a deep dive into how AWS Systems Manager (SSM) - Run Command can be used offensively and how stealthy we can be.
Evey organization will use SSM to manage multiple EC2 instances at once. To do this management, there are some configuration requirements that, if mistaken, can lead to the compromise of every other instances within the account.
In this presentation we'll see about 10 different ways to get reverse shells and perform RCE in private and public EC2 instances.
I'm a Senior Penetration Tester at KPMG Romania and in the last year I focused on hacking the cloud, especially AWS. I write articles, I do research and I love every minute of it.