Only takes a Spark - Popping a shell on a 1000 nodes

Presented at DEF CON 28 (2020) Virtual, Aug. 9, 2020, 11:30 a.m. (30 minutes).

"Apache Spark is one of the major players if not the leader when it comes to distributed computing and processing. Want to use machine learning to build models and uncover fraud, make predictions, estimate future sales or calculate revenue ? Whip out a 200 nodes cluster on Spark and you are good to go. This talk will show you how to get a shell on each one of these nodes! We are talking about systems that, by design, have access to almost every datastore in the company (S3, Cassandra, BigQuery, MySQL, Redshift, etc.). This is game over for most companies. I will also release a tool that will help pentesters pwn Spark clusters, execute code and even bypass authentication (CVE-2020-9480)."

Presenters:

  • Ayoub Elaassal / Ayoul3 as ayoul3
    Ayoub currently works as Lead Security at Qonto. He spent several years working as a pentester and an incident responder. He gave talks at various security conferences about Mainframe hacking. Lately, his main focus is Cloud security. @ayoul3__

Links:

Similar Presentations: