DFIRCON - Live Online: The ALL Digital Forensics, Threat Hunting and Incident Response Training Event. Save $300 thru 10/7.


To attend this webcast, login to your SANS Account or create your Account.

This webcast has been archived. To view the webcast login into your SANS Portal Account or create an account by clicking the "Get Registered" button on the right. Sorry, the slides for this webcast are not available for download.

Attack Simulation: Docker Application

  • Tuesday, May 19, 2020 at 3:30 PM EDT (2020-05-19 19:30:00 UTC)
  • Tim Buntel


  • Threat Stack

You can now attend the webcast using your mobile device!



This webcast is pre-recorded. However, the recording will not be available until after the broadcast.

Youve been hacked. A developer leveraged a 3rd party library with unsanitized input that a SCA tool cant flag. This containerized application goes into production making your entire cloud infrastructure vulnerable to severe security incidents. Does this sound familiar?

We will demonstrate and deconstruct a full-stack attack in a containerized application from the app layer, EC2 layer, to the cloud management console. Then, we will discuss how you can proactively identify the risk and remediation guidance for developers. Tune in to watch this step-by-step attack unfold and how to reduce your own attack surface.

Speaker Bio

Tim Buntel

Tim Buntel is VP of Application Security Products at Threat Stack. Prior to this role, Tim has built globally recognized software businesses for 20 years at startups, midsized companies in transition, and the largest global brands, including Atlassian, Adobe, Microsoft, and XebiaLabs with an emphasis on developer tools and platforms; helping developers build better software. He is also a founding mentor and Board member at Smarter in the City, a non-profit high-tech accelerator with a mission to diversify Bostonís startup sector by providing support and resources for local minority-run ventures.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.