Title: Static analysis of Infrastructure as code: Terraform, Kubernetes, Cloudformation and more!

Description:
Planning, provisioning, and changing infrastructure are becoming vital to rapid cloud application development. Incorporating infrastructure-as-code into software development promotes transparency and immutability and helps prevent bad configurations upstream.

About this talk: Planning, provisioning, and changing infrastructure are becoming vital to rapid cloud application development. Incorporating infrastructure-as-code into software development promotes transparency and immutability and helps prevent bad configurations upstream.

In this talk:

We'll cover the current state of infrastructure security in the open source registries.

From there we will continue to discuss best practices for writing, testing, and maintaining infrastructure at scale, keeping the infrastructure code secured using open source scanners.

We will cover infrastructure security use cases like encryption, public-facing data entities and plain text secrets, And will show how to find those using policy as code.

Based on the open source tool:

https://github.com/bridgecrewio/chec...ee/master/docs

And the training resources:

https://github.com/bridgecrewio/terragoat/
https://github.com/madhuakula/kubernetes-goat

Speaker(s): Barak Schoster

Location: Cloud Vlg

Discord: https://discord.com/channels/7082082...33373172285520

Event starts: 2020-08-07 12:50 (12:50 PM) PDT (UTC -07:00)

Event ends: 2020-08-07 13:25 (01:25 PM) PDT (UTC -07:00)

For the most up-to-date information, please either visit https://info.defcon.org, or use HackerTracker, which is available for iOS and Android. This is an automated message, and this data was last modified 2020-08-07T00:36 (UTC).