Tweet
Title: (Beginner) Cloud Security Monitoring on a Dime Store Budget
Description:
As organizations continue to rely on the cloud to run critical production workloads and store potentially sensitive data, it is more important than ever to understand our cloud infrastructure, and implement monitoring to assist in providing greater insight into the "goings on” of cloud environments.
In this workshop, attendees will learn how they can leverage free and open source tools to enable effective network security monitoring for major cloud providers, extending their visibility, providing greater overall context with regard to their organization's network traffic, and identifying anomalies that otherwise might have gone unnoticed.
This workshop will address the following topics:
Introduction to NSM (Network Security Monitoring Concepts) - key NSM concepts will be discussed/explained
Major cloud providers, and native mechanisms to facilitate network security monitoring
AWS/Google Cloud
Packet mirroring - we'll discuss what packet mirroring is, and how it can be utilized
Cloud provider-specific core NSM/infrastructure/networking concepts and implementation - in this section, we'll discuss the components of each cloud provider's infrastructure, and how it relates to our approach to network security monitoring
AWS
Google Cloud
Automating deployment for cloud environments - in this section, we'll discuss how to automate deployment of cloud security monitoring (for free), as well as how to quickly and easily spin up and environment for testing, academia, or even a PoC for a potential production deployment.
Speaker(s): Wes Lambert
Location: Blue Team Vlg / Blue Team Vlg - Workshop Track 2
Discord: https://discord.com/channels/7082082...54317658734613
Event starts: 2020-08-09 13:30 (01:30 PM) PDT (UTC -07:00)
Event ends: 2020-08-09 15:00 (03:00 PM) PDT (UTC -07:00)
For the most up-to-date information, please either visit https://info.defcon.org, or use HackerTracker, which is available for iOS and Android. This is an automated message, and this data was last modified 2020-08-03T00:19 (UTC).
Description:
As organizations continue to rely on the cloud to run critical production workloads and store potentially sensitive data, it is more important than ever to understand our cloud infrastructure, and implement monitoring to assist in providing greater insight into the "goings on” of cloud environments.
In this workshop, attendees will learn how they can leverage free and open source tools to enable effective network security monitoring for major cloud providers, extending their visibility, providing greater overall context with regard to their organization's network traffic, and identifying anomalies that otherwise might have gone unnoticed.
This workshop will address the following topics:
Introduction to NSM (Network Security Monitoring Concepts) - key NSM concepts will be discussed/explained
Major cloud providers, and native mechanisms to facilitate network security monitoring
AWS/Google Cloud
Packet mirroring - we'll discuss what packet mirroring is, and how it can be utilized
Cloud provider-specific core NSM/infrastructure/networking concepts and implementation - in this section, we'll discuss the components of each cloud provider's infrastructure, and how it relates to our approach to network security monitoring
AWS
Google Cloud
Automating deployment for cloud environments - in this section, we'll discuss how to automate deployment of cloud security monitoring (for free), as well as how to quickly and easily spin up and environment for testing, academia, or even a PoC for a potential production deployment.
Speaker(s): Wes Lambert
Location: Blue Team Vlg / Blue Team Vlg - Workshop Track 2
Discord: https://discord.com/channels/7082082...54317658734613
Event starts: 2020-08-09 13:30 (01:30 PM) PDT (UTC -07:00)
Event ends: 2020-08-09 15:00 (03:00 PM) PDT (UTC -07:00)
For the most up-to-date information, please either visit https://info.defcon.org, or use HackerTracker, which is available for iOS and Android. This is an automated message, and this data was last modified 2020-08-03T00:19 (UTC).