Log inOpen app
Scott Piper
Wiz
10.5K posts
user avatar
Scott Piper
Wiz
@0xdabbad00
Cloud security historian Developed flaws.cloud, CloudMapper, and Parliament Organizer for @fwdcloudsec Researcher at @wiz_io
Jackson, WY
SummitRoute.com
Joined August 2012
252
Following
19.7K
Followers
user avatar
@0xdabbad00

See Scott Piper’s full profile

Open X

New to X?

Sign up now to get your own personalized timeline!

Create account

By signing up, you agree to the Terms of Service and Privacy Policy, including Cookie Use.

Terms·Privacy·Cookies·Accessibility·Ads Info·© 2026 X Corp.
Don't miss what's happening
People on X are the first to know.
Log inSign up
  • Pinned
    user avatar
    Scott Piper
    Wiz
    @0xdabbad00
    Oct 17, 2021
    In 2016, @dagrz gave one of the greatest cloud security talks ever, filled with new techniques that have been rediscovered repeatedly in the years since. I've remastered it from video obtained from an audience member and the slide deck. youtube.com/watch?v=8ZXRw4…
    13
    61
    313
  • user avatar
    Scott Piper
    Wiz
    @0xdabbad00
    May 10, 2024
    Google Cloud accidentally deleted a company's entire cloud environment (Unisuper, an investment company, which manages $80B). The company had backups in another region, but GCP deleted those too. Luckily, they had yet more backups on another provider.
    Google Cloud accidentally deletes UniSuper’s online account due to ‘unprecedented misconfiguration’
    From theguardian.com
    477
    3.5K
    17K
    6M
  • user avatar
    Scott Piper
    Wiz
    @0xdabbad00
    Jan 13, 2022
    😱😱😱 This is worse than ChaosDB for AWS. @orcasec gained access to all AWS resources in all AWS accounts! They accessed the AWS internal CloudFormation service. orca.security/resources/blog… Separately, they did something similar for Glue. orca.security/resources/blog…
    25
    449
    1K
  • user avatar
    Scott Piper
    Wiz
    @0xdabbad00
    Nov 28, 2020
    AWS has posted a post-mortem of Nov 25 incident. From the info there, we learn some of the internal service dependencies that caused the cascade of failures across services. aws.amazon.com/message/11201/
    19
    301
    1K
  • user avatar
    Scott Piper
    Wiz
    @0xdabbad00
    Dec 4, 2021
    I've begun a list of security mistakes made by Cloud Service Providers (AWS, GCP, Azure). Includes CVEs, SOC 2 Type 2 failures, security researchers compromising managed services, and more.
    github.com
    GitHub - SummitRoute/csp_security_mistakes: This repo has been replaced by https://www.cloudvulnd...
    This repo has been replaced by https://www.cloudvulndb.org - SummitRoute/csp_security_mistakes
    13
    281
    868
  • user avatar
    Scott Piper
    Wiz
    @0xdabbad00
    Jan 5, 2021
    For red teams and pentesters, and defenders wanting to know attacks to look for and protect against, I've written down the techniques I would use to attack AWS environments. tldrsec.com/blog/lesser-kn…
    5
    268
    770
  • user avatar
    Scott Piper
    Wiz
    @0xdabbad00
    Aug 13, 2019
    There are 5985 AWS privileges. 2505 (42%) have no condition restrictions possible (other than the global conditions) and can only use a resource of *. ec2 is the "worst" service with 259/338 (76%) privileges that cannot be restricted beyond * access. :(
    13
    257
    633
  • user avatar
    Scott Piper
    Wiz
    @0xdabbad00
    Dec 22, 2021
    AWSSupportServiceRolePolicy just got s3:GetObject. 😱 That role is supposed to only have metadata visibility. @AWSSecurityInfo you need to roll that back.
    user avatar
    IAMTrail (Previously MAMIP)
    @IAMTrail_
    Dec 22, 2021
    Automated by @zoph
    AWSSupportServiceRolePolicy ... github.com/z0ph/MAMIP/com…
    14
    143
    617
  • user avatar
    Scott Piper
    Wiz
    @0xdabbad00
    Jun 24, 2020
    This chart shows the counts of APIs by AWS service, grouped by the categories in the web console. It's interesting seeing how "large" some categories of the AWS ecosystem are that you may not have much knowledge of.
    14
    174
    574
  • user avatar
    Scott Piper
    Wiz
    @0xdabbad00
    Dec 15, 2021
    AWS outage in us-west-2 and us-west-1 for all you that thought you'd be safe from us-east-1.
    5
    95
    515
  • user avatar
    Scott Piper
    Wiz
    @0xdabbad00
    Dec 22, 2021
    Genie: You have 3 wishes Me: I wish the status page was updated more often. Genie: Granted. There will be more outages. What else? Me: 😱 ... I wish AWS support was more helpful. Genie: Granted. They have read access to all your data now. Me: 😱 I'm not doing this anymore. 😭
    8
    85
    478
  • user avatar
    Scott Piper
    Wiz
    @0xdabbad00
    Dec 22, 2021
    There has never been an encryption related announcement from AWS that I didn't stare at thinking "You weren't doing that already?!?" 😳
    user avatar
    What's New on AWS (Unofficial)
    @awswhatsnew
    Dec 22, 2021
    AWS Secrets Manager now automatically enables SSL connections when rotating database secrets AWS Secrets Manager now transparently supports SSL connections when rotating database secrets for Amazon RDS MySQL, MariaDB, SQL Server, PostgreSQL, and Mo... aws.amazon.com/about-aws/what…
    12
    65
    442
  • user avatar
    Scott Piper
    Wiz
    @0xdabbad00
    Feb 17, 2021
    Big news! I'm shutting down my consulting business and just had my first day with @aurora_inno where I'll be leading AWS security. We're hiring! I suspect I'll be busy for a while, so I wanted to write down some project ideas I wasn't able to get to: summitroute.com/blog/2021/02/1…
    62
    30
    411
  • user avatar
    Scott Piper
    Wiz
    @0xdabbad00
    Dec 9, 2020
    I took a first pass at mapping out how AWS security services all connect to one another and where to categorize them. Given all the cycles, PowerPoint was a poor choice given the minimal edge flexibility.
    19
    92
    426