Only takes a Spark - Popping a shell on a 1000 nodes

Presented at DEF CON 28 (2020) Virtual, Aug. 9, 2020, 11:30 a.m. (30 minutes)

"Apache Spark is one of the major players if not the leader when it comes to distributed computing and processing. Want to use machine learning to build models and uncover fraud, make predictions, estimate future sales or calculate revenue ? Whip out a 200 nodes cluster on Spark and you are good to go. This talk will show you how to get a shell on each one of these nodes! We are talking about systems that, by design, have access to almost every datastore in the company (S3, Cassandra, BigQuery, MySQL, Redshift, etc.). This is game over for most companies. I will also release a tool that will help pentesters pwn Spark clusters, execute code and even bypass authentication (CVE-2020-9480)."

Presenters:

• Ayoub Elaassal / Ayoul3   as ayoul3
  Ayoub currently works as Lead Security at Qonto. He spent several years working as a pentester and an incident responder. He gave talks at various security conferences about Mainframe hacking. Lately, his main focus is Cloud security. @ayoul3__

Links:

• https://defcon.org/html/defcon-safemode/dc-safemode-speakers.html#Elaassal
• https://infocon.org/cons/DEF CON/DEF CON 28/DEF CON Safe Mode video and slides/DEF CON Safe Mode - Ayoul3 - Only takes a spark - Popping a shell on 1000 nodes - Q&A.mp4
• https://infocon.org/cons/DEF CON/DEF CON 28/DEF CON Safe Mode video and slides/DEF CON Safe Mode - Ayoul3 - Only takes a spark - Popping a shell on 1000 nodes.mp4
• https://infocon.org/cons/DEF CON/DEF CON 28/DEF CON Safe Mode video and slides/DEF CON Safe Mode - Ayoul3 - Only takes a spark - Popping a shell on 1000 nodes.srt (subtitles)
• https://www.youtube.com/watch?v=EAzdGo-i8vE

Similar Presentations:

• DEF CON 30 (2022) / Exploitation in the era of formal verification: a peek at a new frontier with AdaCore/SPARK
• GrrCON 2018 / Analyzing Pwned Passwords with Apache Spark