Melbourne AWS User Group Monthly Meetup

Are you going?

45 spots left

Share:

Every last Wednesday of the month until October 29, 2019

YBF Ventures

520 Bourke Street · Melbourne

How to find us

Up the stairs to level 1, then through the glass doors and to the right.

Location image of event venue

Details

Our regular monthly meetup (on the last Wednesday of every month).

Arrive at 6:00 pm for a 6:15 pm start.

We're back to our usual format this month and we're celebrating with two fantastic and in-depth presentations. First JM will take us through a detailed demo of breaking into a private and encrypted S3 bucket in the vein of what happened to a large financial organisation recently and the steps you can take to protect your data. Then after the break Iman breaks down what was involved in replicating their entire AWS infrastructure in the European regions due to data sovereignty requirements. Its going to be a great night!

As always a huge thanks to our gold sponsors Innablr (https://innablr.com.au) for their support across 2019 - we could not do these events without them.

Don't forget if you can't make it on the night you can still watch the live stream: http://melb.awsug.org.au/live

----

# Agenda

* Introductions
* Arjen and Chris: What's new in AWS
* Jean-Manuel Becker: Hacking private S3 buckets with SSRF in under 2 minutes and how to protect yourself [Level 400]
* Marketplace (Who's Hiring)
* Pizza break
* Iman Yusuf: Heading to Europe: The Data Sovereignty Project [Level 300]

----

# Hacking private S3 buckets with SSRF in under 2 minutes and how to protect yourself
- Jean-Manuel Becker

Level 400

JM takes us through how to exfiltrate data from private and encrypted S3 buckets in the style of what happened to “financial organisation 𝑥” (with a live demo!) and six solutions to make sure it does not happen to you.

----

# Heading to Europe: The Data Sovereignty Project
- Iman Yusuf

Level 300

To expand into Europe, Culture Amp needed to reproduce their entire production infrastructure. After seven years of incremental growth in complexity, this was an exciting challenge. With eight weeks to get it done, the SRE team learned a lot along the way.

Culture Amp has been operating in AWS US region since the inception of the company until mid this year. The original infrastructure was created in 2011, which was a manual process. Since then, the infrastructure has grown enormously to support a monolith application and dozens of microservices.

In this talk, Iman Yusuf, Lead SRE Engineer, will share the challenges the SRE team faced, and how the team overcame some of the them. Iman will also discuss how these challenges change the way infrastructure is managed at Culture Amp.

----

If you are interested in presenting you can find more and submit your talk idea on our website: https://melb.awsug.org.au/get-involved/