Evading Logging in AWS CloudTrail - Security Techniques and Vulnerabilities
fwd:cloudsec via YouTube
Become an AI & ML Engineer with Cal Poly EPaCE — IBM-Certified Training
Free courses from frontend to fullstack and AI
Overview
Google, IBM & Meta Certificates – 40% Off
One plan covers every Professional Certificate on Coursera.
Unlock All Certificates
Learn how attackers can bypass AWS CloudTrail logging through a 40-minute conference talk that explores both common and advanced evasion techniques. Discover real-world methods used to disable CloudTrail monitoring, understand vulnerabilities that enable stealthy reconnaissance without leaving traces, and gain insights into how security teams can respond to these threats. Dive deep into the technical aspects of AWS API manipulation, including undocumented APIs and non-production endpoints, while understanding the implications for account-level trails and overall cloud security. Gain practical knowledge about protecting cloud environments from sophisticated attacks that attempt to circumvent security logging mechanisms.
Syllabus
Introduction
What is CloudTrail
Account Level Trails
AWS API
Undocumented API
Nonproduction endpoints
Non production endpoints
Questions
Taught by
fwd:cloudsec