AWS IAM PrivEsc Attacks & Defenses

Learn about AWS IAM Privilege Escalation attacks and how threat actors can exploit vulnerabilities caused by misconfigurations in IAM. We’ll explain what privilege escalations are, we’ll provide real-world examples and a live demo, and we’ll talk about common techniques used in the wild. Then, we’ll explain and demonstrate how to find potential PrivEscs in your AWS environments and how to defend against these threats.

Topics covered:

  • IAM Privilege Escalation explained
  • Real-world examples and live demo of a PrivEsc
  • How to prevent and defend against cloud PrivEscs
  • Live demo of defending with CodeShield


  • Wednesday, March 6th, 2024
  •  09:00 AM MST / 11:00 AM EST / 05:00 PM CET
Manuel Benz

Presenter spotlight

Manuel Benz

Manuel is the CTO and Co-Founder of CodeShield. He has worked for SAP and Fraunhofer and has more than 7 years of experience in SAST & DAST. His passion for AWS IAM has been a driving force since his inception into the realm of AWS development.

CodeShield helps cloud teams to detect IAM privilege escalation vulnerabilities in their infrastructure in less than 30 minutes.

Christophe Limpalair

Presenter spotlight

Christophe Limpalair

Christophe is the Founder and a Trainer at Cybr. He’s been developing and architecting on AWS for over 8 years, where he’s seen attacks of all sorts of different shapes and sizes. 

Now, he develops, maintains, and secures Cybr’s Hands-On platform as well as produces high-quality AWS security training for individuals and businesses.

Upskill your team in AWS security with our Hands-On training