GC2 - The First Serverless Command & Control

Presented at DEF CON 32 (2024), Aug. 10, 2024, noon (105 minutes).

GC2 is the first serverless command and control. This project aims to demonstrate how attackers could take advantage of third-party tools (Google Sheets and Google Drive) to execute commands and exfiltrate information from a compromised system. First released in 2021, became well known in April 2023 after being mentioned in Google's Threat Horizons Report.

Presenters:

• Lorenzo Grazian
  Lorenzo Grazian has more than 6 years of experience in red teaming, penetration testing and source code review mainly in the financial and transport industries. He worked and led local and global cybersecurity projects. Besides his offensive security background, he developed several tools to support offensive security activities.

Similar Presentations:

• AppSec USA 2016 / Serverless Security: Doing Security in 100 milliseconds
• SAINTCON 2019 / Serverless Security 101
• Global AppSec - DC 2019 / OWASP Serverless Top 10