Server Side Request Forgery (SSRF) and AWS EC2 instances after Instance Meta Data Service version 2(IMDSv2) | by Riyaz Walikar | Appsecco
Capital One Breach: A Crime Board & A Case of Speculative Sleuthing | by Chetan Conikee | ShiftLeft Blog
Cloud Security: Attacking The Metadata Service
Detecting Server-Side Request Forgery Attacks on Amazon Web Services The ISSA Journal February 2020
Running Example-an illustration of the Capital One Data Breach [36] | Download Scientific Diagram
Finding SSRF via HTML Injection inside a PDF file on AWS EC2 | by Riyaz Walikar | Appsecco
Environment Types
The Right Way to Store Secrets using Parameter Store | AWS Cloud Operations & Migrations Blog
The right way to manage secrets with AWS | Segment Blog
Get started with automated metadata extraction using the AWS Media Analysis Solution | AWS Machine Learning Blog
Getting started with Version 2 of AWS EC2 Instance Metadata service (IMDSv2) | by Sunesh Govindaraj | Appsecco
Indexing Metadata in Amazon Elasticsearch Service Using AWS Lambda and Python | AWS Database Blog
Migrating Data to AWS in a Data Lake Pattern
AWS 101 Lunch and Learn | London
CloudGoat AWS Scenario Walkthrough: “EC2_SSRF”
Detecting and hunting threats in AWS Cloudtrail logs and events with machine learning | Elastic Blog
Hunting for Capital One Breach TTPs in AWS logs using Azure Sentinel - Part I - Microsoft Tech Community
線上資料傳輸與遷移—AWS DataSync—Amazon Web Services
The right way to manage secrets with AWS | Segment Blog
Authenticating to AWS with Instance Metadata | by Yevgeniy Brikman | Gruntwork
Abusing AWS Metadata Service - Level Nine Group
Hack AWS EC2 — Catch AWS Account! | by Sena Yakut | Towards AWS
AWS Instance Metadata Service (IMDS) Best Practices - Check Point Software
Netflix Information Security: Preventing Credential Compromise in AWS | by Netflix Technology Blog | Netflix TechBlog
Data Migration and Backup & Recovery using AWS DataSync and Amazon S3
