Announcement

Collapse
No announcement yet.

Michael Bargury - Low Code High Risk: Enterprise Domination via Low Code Abuse

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • Michael Bargury - Low Code High Risk: Enterprise Domination via Low Code Abuse

    Michael Bargury, Co-Founder and CTO, Zenity.io, He/Him
    Presentation Title: Low Code High Risk: Enterprise Domination via Low Code Abuse
    Length of presentation: 45 minutes
    Demo, Tool, Exploit


    Why focus on heavily guarded crown jewels when you can dominate an organization through its shadow IT?

    Low-Code applications have become a reality in the enterprise, with surveys showing that most enterprise apps are now built outside of IT, with lacking security practices. Unsurprisingly, attackers have figured out ways to leverage these platforms for their gain.

    In this talk, we demonstrate a host of attack techniques found in the wild, where enterprise No-Code platforms are leveraged and abused for every step in the cyber killchain. You will learn how attackers perform an account takeover by making the user simply click a link, move laterally and escalate privileges with zero network traffic, leave behind an untraceable backdoor, and automate data exfiltration, to name a few capabilities. All capabilities will be demonstrated with POCs, and their source code will be shared.

    Finally, we will introduce an open-source recon tool that identifies opportunities for lateral movement and privilege escalation through low-code platforms.

    SPEAKER BIO
    Michael Bargury is the Co-Founder and CTO of Zenity, where he helps companies secure their low-code/no-code apps. In the past, he headed security product efforts at Azure focused on IoT, APIs and IaC. Michael is passionate about all things related to cloud, SaaS and low-code security, and spends his time finding ways they could go wrong. He also leads the OWASP low-code security project and writes about it on DarkReading.

    https://twitter.com/mbrg0

    REFERENCES:

    Store by Zapier vulnerability https://www.volkis.com.au/blog/secur...age-by-zapier/
    Power Platform data leakage https://www.upguard.com/breaches/power-apps
    Living-of-the-land of Office365 https://www.vectra.ai/blogpost/o365-...new-powershell
    Gaining persistency on AWS Lambda https://unit42.paloaltonetworks.com/...rable-lambdas/


    []
    Last edited by number6; 2 days ago.
Working...
X