Cloud Village, profile picture
Uploaded byCloud Village
133 views

Cloud Offensive Breach and Risk Assessment (COBRA)

The document introduces COBRA (Cloud Offensive Breach and Risk Assessment), an open-source tool for simulating attacks in multi-cloud environments to evaluate security controls. It highlights challenges in current multi-cloud attack simulations and provides features such as comprehensive assessments, benchmarking, and actionable insights. Users are encouraged to contribute to the tool's development via GitHub.

Embed presentation

Download to read offline
Cloud Offensive Breach & Risk Assessment (COBRA) Harsha & Anand
Authors Harsha Koushik Anand Tiwari @0xlcheetah @anandtiwarics linkedin.com/in/hkoushik linkedin.com/in/anandsundartiwari/ Research & Product Mgr. @ Palo Alto Networks Manager, Product Management @ Palo Alto Networks
Challenges and gaps with running Multi Cloud based Attack simulations ● Single point specific threats or Vulnerabilities use cases simulations ● Lack of simulating multi-dimensional attack scenario in Cloud. ● Difficulty evaluating new Security Vendors for cloud-native with advanced use cases. ● Difficulty building and managing multi-stage cloud lab environments. ● Difficulty in simulating realistic attack path scenarios ● Lack of comprehensive tools for multi-staged attack simulation
Introducing COBRA - Cloud Offensive Breach and Risk Assessment ● Cloud Offensive Breach and Risk Assessment (COBRA) is an open-source tool designed to empower users to simulate attacks within multi-cloud environments ● Offers a comprehensive evaluation of security controls. By automating the testing of various threat vectors including external and insider threats, lateral movement, and data exfiltration
Key Features ● Comprehensive Assessment of Cloud-Native Security Posture ● Benchmarking Against Industry Standards and Best Practices ● Seamless Integration for POC and Tool Evaluation ● Actionable Insights and Recommendations ● Continuous Threat Simulation
Architecture/Solution Diagram
Demo
Contribution ● Github Repo - https://github.com/PaloAltoNetworks/cobra-tool ● Contribs are not just limited to code, feel free to contribute - Ideas, Code, Feedback, Docs, walkthroughs etc.. ● Try the tool out & provide feedback.
QnA Thank you

More Related Content

PPTX
FALCON.pptx
byAvinashRanjan80
 
PPTX
The Sweet Spot of Cyber Intelligence
byTieu Luu
 
PDF
Verizon 2015 DBIR VM portion
byTawnia Beckwith
 
PDF
Cyber Threats and Network Vulnerabilities
byyams12611
 
PDF
Cyber Threats and Network Vulnerabilities (1).pdf
byRosy G
 
PDF
Out With the Old, In With the New – Reinvent and Justify Your 2013 Security S...
bySkybox Security
 
PDF
A Study on Vulnerability Management
byIRJET Journal
 
PDF
Vulnerability Management System
byIRJET Journal
 
FALCON.pptx
byAvinashRanjan80
 
The Sweet Spot of Cyber Intelligence
byTieu Luu
 
Verizon 2015 DBIR VM portion
byTawnia Beckwith
 
Cyber Threats and Network Vulnerabilities
byyams12611
 
Cyber Threats and Network Vulnerabilities (1).pdf
byRosy G
 
Out With the Old, In With the New – Reinvent and Justify Your 2013 Security S...
bySkybox Security
 
A Study on Vulnerability Management
byIRJET Journal
 
Vulnerability Management System
byIRJET Journal
 

More from Cloud Village

PPTX
Unexpected Leaks in AWS Transit Gateways
byCloud Village
 
PDF
The Rise of the Planet of the Agents: LLM-based AI Agents and Cloud Security ...
byCloud Village
 
PDF
Creating Azure Policy Compliant Backdoor
byCloud Village
 
PPTX
Kicking in the Door to the Cloud: Exploiting Cloud Provider Vulnerabilities f...
byCloud Village
 
PDF
Cloud Tripwires: fighting stealth with stealth
byCloud Village
 
PPTX
Connecting the Dots - Mastering Alert Correlation for Proactive Defense in th...
byCloud Village
 
PDF
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Pro...
byCloud Village
 
PPTX
Revealing Choke Points - Practical Tactics for Boosting Cloud Security
byCloud Village
 
PDF
Finding Holes in Conditional Access Policies
byCloud Village
 
PPTX
One Click, Six Services - Abusing The Dangerous Multi-service Orchestration P...
byCloud Village
 
PDF
Terraform Unleashed - Crafting Custom Provider Exploits for Ultimate Control
byCloud Village
 
PPTX
Workshop: Hands-On Container Image Security Mastering Sigstore for Unbreachab...
byCloud Village
 
PDF
DC 32: Epyon - Attacking DevOps environments
byCloud Village
 
PDF
Exploit K8S via Misconfiguration .YAML in CSP environments
byCloud Village
 
PDF
One Port to Serve Them All - Google GCP Cloud Shell Abuse
byCloud Village
 
PDF
The Oracle Awakens: Demystifying Privilege Escalation in the cloud
byCloud Village
 
PDF
Catch them all! Detection engineering and purple teaming in the cloud
byCloud Village
 
PDF
Gone in 60 Seconds… How Azure AD/Entra ID Tenants are Compromise
byCloud Village
 
Unexpected Leaks in AWS Transit Gateways
byCloud Village
 
The Rise of the Planet of the Agents: LLM-based AI Agents and Cloud Security ...
byCloud Village
 
Creating Azure Policy Compliant Backdoor
byCloud Village
 
Kicking in the Door to the Cloud: Exploiting Cloud Provider Vulnerabilities f...
byCloud Village
 
Cloud Tripwires: fighting stealth with stealth
byCloud Village
 
Connecting the Dots - Mastering Alert Correlation for Proactive Defense in th...
byCloud Village
 
Runtime Reachability: Prioritizing Vulnerabilities with eBPF & Continuous Pro...
byCloud Village
 
Revealing Choke Points - Practical Tactics for Boosting Cloud Security
byCloud Village
 
Finding Holes in Conditional Access Policies
byCloud Village
 
One Click, Six Services - Abusing The Dangerous Multi-service Orchestration P...
byCloud Village
 
Terraform Unleashed - Crafting Custom Provider Exploits for Ultimate Control
byCloud Village
 
Workshop: Hands-On Container Image Security Mastering Sigstore for Unbreachab...
byCloud Village
 
DC 32: Epyon - Attacking DevOps environments
byCloud Village
 
Exploit K8S via Misconfiguration .YAML in CSP environments
byCloud Village
 
One Port to Serve Them All - Google GCP Cloud Shell Abuse
byCloud Village
 
The Oracle Awakens: Demystifying Privilege Escalation in the cloud
byCloud Village
 
Catch them all! Detection engineering and purple teaming in the cloud
byCloud Village
 
Gone in 60 Seconds… How Azure AD/Entra ID Tenants are Compromise
byCloud Village
 

Recently uploaded

PDF
Understanding Foldable 3-Wheel Electric Scooters for Everyday Use
byTopmate
 
PDF
Explaining specific examples of purpose-specific BOM
byakipii ogaoga
 
PDF
Writing GPU-Ready AI Models in Pure Java with Babylon
byAna-Maria Mihalceanu
 
PDF
Self-Correction Failure Diagnostic: Detecting Drift in Complex Systems
bySystems Research Group
 
PDF
Mesh WiFi Router: The Smart Solution for Fast, Seamless, Whole-Home Internet
byAeroMesh Systems
 
PDF
Advanced SELinux Management - RHCSA (RH134).pdf
byLinuxCert Guru
 
PDF
NTG -Company Profile_Software_Vendor_Company_in_MENA
byMustafa Kuğu
 
PDF
How does MES(Manufacturing Execution System) work?
byakipii ogaoga
 
PDF
Analyze and Preserve Logs - RHCSA (RH134).pdf
byLinuxCert Guru
 
PDF
The Emergence of Empathic XR: AWE Asia 2026 keynote
byMark Billinghurst
 
PDF
Startup Formation Collapses While Acquisition Activity Hits New High!
byMemoori
 
PDF
Poročilo odbora CIS (CH08873) za leto 2025 na letni skupščini IEEE Slovenija ...
byUniversity of Maribor
 
PDF
UiPath Automation Developer Associate Training Series 2026 - Session 1
byDianaGray10
 
PDF
Explaining the flow of purpose-specific BOM
byakipii ogaoga
 
PDF
CI CD Observability, Metrics and DORA - Shifting Left and Cleaning Up! - Febr...
byPeter Souter
 
PDF
Mount File Systems using UUID and Label - RHCSA (RH134).pdf
byLinuxCert Guru
 
PDF
Chapter 5 Security Mechanisms iin computer security.pdf
byGetnet Tigabie Askale -(GM)
 
PDF
Post Quantum Cryptography for Dummies.pdf
byAde Ismail Isnan
 
PDF
Getting Started with Apache Spark: Big Data Made Simple [Free Meetup]
byHaim Michael
 
PDF
BEP-20 Token on BNB Chain: From Concept to Deployment.pdf
byimoliviabennett
 
Understanding Foldable 3-Wheel Electric Scooters for Everyday Use
byTopmate
 
Explaining specific examples of purpose-specific BOM
byakipii ogaoga
 
Writing GPU-Ready AI Models in Pure Java with Babylon
byAna-Maria Mihalceanu
 
Self-Correction Failure Diagnostic: Detecting Drift in Complex Systems
bySystems Research Group
 
Mesh WiFi Router: The Smart Solution for Fast, Seamless, Whole-Home Internet
byAeroMesh Systems
 
Advanced SELinux Management - RHCSA (RH134).pdf
byLinuxCert Guru
 
NTG -Company Profile_Software_Vendor_Company_in_MENA
byMustafa Kuğu
 
How does MES(Manufacturing Execution System) work?
byakipii ogaoga
 
Analyze and Preserve Logs - RHCSA (RH134).pdf
byLinuxCert Guru
 
The Emergence of Empathic XR: AWE Asia 2026 keynote
byMark Billinghurst
 
Startup Formation Collapses While Acquisition Activity Hits New High!
byMemoori
 
Poročilo odbora CIS (CH08873) za leto 2025 na letni skupščini IEEE Slovenija ...
byUniversity of Maribor
 
UiPath Automation Developer Associate Training Series 2026 - Session 1
byDianaGray10
 
Explaining the flow of purpose-specific BOM
byakipii ogaoga
 
CI CD Observability, Metrics and DORA - Shifting Left and Cleaning Up! - Febr...
byPeter Souter
 
Mount File Systems using UUID and Label - RHCSA (RH134).pdf
byLinuxCert Guru
 
Chapter 5 Security Mechanisms iin computer security.pdf
byGetnet Tigabie Askale -(GM)
 
Post Quantum Cryptography for Dummies.pdf
byAde Ismail Isnan
 
Getting Started with Apache Spark: Big Data Made Simple [Free Meetup]
byHaim Michael
 
BEP-20 Token on BNB Chain: From Concept to Deployment.pdf
byimoliviabennett
 

Cloud Offensive Breach and Risk Assessment (COBRA)

  • 1.
    Cloud Offensive Breach& Risk Assessment (COBRA) Harsha & Anand
  • 2.
    Authors Harsha Koushik AnandTiwari @0xlcheetah @anandtiwarics linkedin.com/in/hkoushik linkedin.com/in/anandsundartiwari/ Research & Product Mgr. @ Palo Alto Networks Manager, Product Management @ Palo Alto Networks
  • 3.
    Challenges and gapswith running Multi Cloud based Attack simulations ● Single point specific threats or Vulnerabilities use cases simulations ● Lack of simulating multi-dimensional attack scenario in Cloud. ● Difficulty evaluating new Security Vendors for cloud-native with advanced use cases. ● Difficulty building and managing multi-stage cloud lab environments. ● Difficulty in simulating realistic attack path scenarios ● Lack of comprehensive tools for multi-staged attack simulation
  • 4.
    Introducing COBRA -Cloud Offensive Breach and Risk Assessment ● Cloud Offensive Breach and Risk Assessment (COBRA) is an open-source tool designed to empower users to simulate attacks within multi-cloud environments ● Offers a comprehensive evaluation of security controls. By automating the testing of various threat vectors including external and insider threats, lateral movement, and data exfiltration
  • 5.
    Key Features ● ComprehensiveAssessment of Cloud-Native Security Posture ● Benchmarking Against Industry Standards and Best Practices ● Seamless Integration for POC and Tool Evaluation ● Actionable Insights and Recommendations ● Continuous Threat Simulation
  • 6.
  • 7.
  • 8.
    Contribution ● Github Repo- https://github.com/PaloAltoNetworks/cobra-tool ● Contribs are not just limited to code, feel free to contribute - Ideas, Code, Feedback, Docs, walkthroughs etc.. ● Try the tool out & provide feedback.
  • 9.