Attack & Detection of a Cloud Security Breach with 0xd4y

https://is1-ssl.mzstatic.com/image/thumb/Podcasts211/v4/8f/8b/4b/8f8b4b7c-0aef-e162-be28-476d9a9e7d36/mza_9900111694076175621.jpg/600x600bb.jpg

Detection Opportunities

CYBERWOX

9 episodes

5 days ago

Detection Opportunities is a podcast for security professionals who care about building resilient detection and response systems. Each episode explores real-world attacks, breaks down how signals become insights, and dives into the engineering mindset behind effective threat detection, investigation, and defense. Grounded in frontline experience across SIEM development, security operations, incident response, and threat hunting, this show brings a practical, systems-level lens to modern security engineering.

Technology

RSS

All content for Detection Opportunities is the property of CYBERWOX and is served directly from their servers with no modification, redirects, or rehosting. The podcast is not affiliated with or endorsed by Podjoint in any way.

Technology

https://d3t3ozftmdmh3i.cloudfront.net/staging/podcast_uploaded_nologo/43563165/43563165-1745889509474-7bb8047c5945c.jpg

Attack & Detection of a Cloud Security Breach with 0xd4y | EP. 3

Detection Opportunities

14 minutes 28 seconds

6 months ago

Attack & Detection of a Cloud Security Breach with 0xd4y | EP. 3

This episode covers an attack scenario very similar to the one that led to the breach of US Bank Capital One. @0xd4y goes over the attack scenario using CloudGoat by Rhino Security Labs, and I detect his activities using AWS CloudTrail Lake.

_____________

🧬 VIDEO RESOURCES

🔹 Segev's YouTube Channel: @0xd4y

🔹 Segev's walkthrough

🔹 Former AWS engineer convicted over hack that cost Capital One $270m

🔹 CloudGoat

🔹 Instance Metadata

🔹 Sneaky Endpoints

🔹 AWSealion

🔹 GuardDuty Findings

🔹 CloudTrail Lake

_____________