Serverless NYC w/Paul Schwarzenberger

01:00pm-01:10pm ET - Welcome, Cloud/Serverless Introduction
Wayne Scarano, sga.com, Founder, Cloud Strategy/Architecture/Security

01:10pm-02:00pm ET - Serverless prevention of subdomain takeovers
Paul Schwarzenberger, Cloud Security Engineer, OVO Energy

In the first 3 months of the OVO Bug Bounty program, over half the submissions were subdomain takeovers. Here’s what we did next ...
Paul will review the basics of domain takeover, talk about the Bug Bounty program findings, describe the serverless architecture of the OVO open-source tool Domain Protect, and give a live demonstration of vulnerable domain detection followed by automated takeover.

Bio
Paul Schwarzenberger is a well-known member of the cloud security community, having spoken at conferences and meetups including SecurityBSides London, DevSecCon, fwd:cloudsec and SANS CloudSecNext. He’s a cloud security engineer with OVO Energy and former A Cloud Guru instructor, with enterprise experience and professional level certifications across AWS, Azure and GCP.