Everand Logo

Welcome to Everand!

  • Discover this podcast and so much more

    Podcasts are free to enjoy without a subscription. We also offer ebooks, audiobooks, and so much more from just $11.99/month.

    Securing your Terraform State File with Daniel Grzelak

    UNLIMITED

    Securing your Terraform State File with Daniel Grzelak

    FromThe IaC Podcast

    Start listeningView podcast show

    UNLIMITED

    Securing your Terraform State File with Daniel Grzelak

    FromThe IaC Podcast

    ratings:
    Length:
    21 minutes
    Released:
    Apr 12, 2024
    Format:
    Podcast episode

    Description

    How could read access to an S3 bucket escalate to a full AWS environment compromise? Daniel Grzelak walks us through a real red team engagement that sparked his research into Terraform state file vulnerabilities. Hear about the evolution of these vulnerabilities into significant security concerns and how OpenTofu 1.7's state encryption feature is set to change the game.Listen now and explore Daniel's detailed insights on 'Hacking Terraform State for Privilege Escalation' here.Daniel Grzelak is a 20-year cybersecurity industry veteran, investor, advisor, and speaker. He is no longer the CISO at Linktree nor the Head of Security at Atlassian, but he tries to stay relevant by hacking AWS and Cloud in general.
    Released:
    Apr 12, 2024
    Format:
    Podcast episode

    Titles in the series (31)

    The IaC Podcast explores the world of DevOps and cloud computing through the lens of Infrastructure as Code (IaC). Hosted by industry experts and thought leaders, this podcast delves into the benefits, challenges, and best practices of using code to manage and automate infrastructure. From Terraform to CloudFormation to Pulumi, listeners will gain insights into the latest trends and techniques shaping the future of infrastructure management. Whether you're a seasoned DevOps practitioner or just starting out, this podcast is a must-listen for anyone interested in the power of Infrastructure as Code.