Coursera Plus Annual is 40% Off — Ends July 6.

Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

No IP, No Problem - Exfiltrating Data Behind IAP

BSidesLV via YouTube

Start learning Write review
Coursera Ad

Learn AI, Data Science & Business — Earn Certificates That Get You Hired

Learn More → Scrimba Ad

Get 20% off all career paths from fullstack to AI

Learn More →

Overview

AI, Data Science & Cloud Certificates from Google, IBM & Meta — 40% Off
One plan covers every Professional Certificate on Coursera. 40% off Coursera Plus Annual.
Unlock All Certificates
Discover critical security vulnerabilities in Google Cloud Platform's Identity-Aware Proxy (IAP) through this 22-minute conference talk that exposes how attackers can exfiltrate data without requiring public IP addresses. Learn about dangerous misconfigurations in IAP implementations, including IAM binding issues, excessive trust in HTTP headers, and commonly overlooked endpoints that create security gaps. Explore practical demonstration techniques showing how these vulnerabilities enable unauthorized data access and exfiltration from supposedly protected cloud resources. Gain insights into effective detection strategies for identifying these security weaknesses in your own GCP environments and develop a more critical understanding of trust boundaries within Google Cloud Platform's security model.

Syllabus

- Date/Time: Tuesday, 11:00–11:20

Taught by

BSidesLV

Reviews

Start your review of No IP, No Problem - Exfiltrating Data Behind IAP

Start learning

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.