Workshop: Point and Shoot to Continuous Auditing in the AWS Cloud – Andrew Krug

In 2023 cloud environments are becoming increasingly complex resulting in wide variety of misconfigurations. In this workshop you’ll learn how to use point and shoot tools from the open ecosystem for cloud security assessments along with a few pro tips on how to segment and sandbox those. We will also dive into continuous auditing and how to setup long term dashboards for organizations to assess their maturity over time. Attendees will leave with a firm understanding of how to leverage the tools, articulate which method is better based on use case, and assume various roles (safely) in the AWS. Don’t miss this session with Antisyphon instructor Andrew Krug. Attendees should bring a laptop with any modern Linux virtual machine or MacOS.

Andrew Krug is a Security Geek specializing in Cloud and Identity and Access Management. Krug brings 15 years experience at the intersection of security, education, and systems administration. As a fierce advocate for Open Source and founder of ThreatResponse tool suite, Andrew has helped inspire the landscape around forensics and incident response in the Cloud. Krug has been a presenter at a variety of conferences, publishing papers with BlackHat USA, DerbyCon, and many more.