Attacking Modern SaaS Companies

Presented at NolaCon 2017, May 19, 2017, 5 p.m. (Unknown duration)

Modern software-as-a-service (SaaS) companies have a large footprint and a lot of automation which enables them to build their service quickly. However, because many devops and cloud tools and processes are new, many companies don’t understand the risks and don’t plan with security in mind. Even some practiced network pentesters don’t always know the best way to find vulnerabilities in these complex cloud-based systems.

This talk is an introduction to pentesting these companies and is focused on giving attendees a breadth of knowledge on the new tech – like microservices, serverless computing, configuration management, and containers – that modern SaaS companies are using. You’ll learn how to attack them and pivot towards high value targets or how to defend yourself against these attacks and how to monitor for breaches. A new remote access tool for AWS will be released to control AWS accounts with a minimum chance of observation.

Presenters:

• Sean Cassidy
  Bio: Sean is the CTO of DefenseStorm, a next gen SIEM for cloud and on-premise networks. When he's not knee-deep thinking of cool stuff to add to his product, he likes to do security talks at conferences like this one. Last year, he debuted the LostPass phishing attack against LastPass and discussed common crypto vulnerabilities in single sign-on implementations. Twitter: @sean_a_cassidy

Links:

• https://nolacon.com/talk/attacking-modern-saas-companies
• https://infocon.org/cons/NolaCon/NolaCon 2017/Attacking Modern SaaS Companies Sean Cassidy.mp4
• https://infocon.org/cons/NolaCon/NolaCon 2017/Attacking Modern SaaS Companies Sean Cassidy.srt (subtitles)

Similar Presentations:

• AppSec USA 2017 / DevSecOps is real - What we learned by matching our appsec testing to our continuous release cycles
• Blue Team Con 2022 / SaaSy detection: purple teaming Software-as-a-Service platforms
• Kawaiicon 2 (2022) Rescheduled / SaaS - Security as a Secondthought