Minh Hoang Nguyen
Cybersecurity Researcher
Université libre de Bruxelles (ULB)
Minh-Hoang Nguyen (0x7a6b4c) is a cybersecurity researcher and Erasmus Mundus scholar specializing in penetration testing, threat intelligence, and cloud security, holding multiple industry-recognized certifications: OSEP, OSCP, CRTL, CRTO, CRTP.
Speaker sessions
SkyEye: When Your Vision Reaches Beyond IAM Boundary Scope in the Cloud
In this Arsenal session, we will showcase a new framework: SkyEye - The First Cooperative Multi-Principal IAM Enumeration Framework for AWS CloudSkyEye Framework proposed and developed two novel models: CPIEM and TCREM. Unlike conventional tools and frameworks, SkyEye is able to synchronize reconnaissance across multiple user and role sessions, dynamically chaining and merging their vantage points to unravel the full spectrum of permissions, resource authorizations, and hidden escalation paths. This methodology exposes not only what each principal can see, but also what they can achieve in combination, uncovering hidden attack vectors and privilege escalation paths invisible to traditional IAM enumeration.
- 16:20
- Tue
- 02 Dec
Stage:
Arsenal 1
Sessions Type:
Demo
SkyEye: When Your Vision Reaches Beyond IAM Boundary Scope in the Cloud
In this Arsenal session, we will showcase a new framework: SkyEye - The First Cooperative Multi-Principal IAM Enumeration Framework for AWS CloudSkyEye Framework proposed and developed two novel models: CPIEM and TCREM. Unlike conventional tools and frameworks, SkyEye is able to synchronize reconnaissance across multiple user and role sessions, dynamically chaining and merging their vantage points to unravel the full spectrum of permissions, resource authorizations, and hidden escalation paths. This methodology exposes not only what each principal can see, but also what they can achieve in combination, uncovering hidden attack vectors and privilege escalation paths invisible to traditional IAM enumeration.
- 16:20
- Thu
- 04 Dec
Stage:
Arsenal 2
Sessions Type:
Demo