Demonstration of Typical Forensic Techniques for AWS EC2 Instances presented at CloudSecuritySummit&Training 2019

by Kenneth G. Hartman,

Summary : This demo is a step-by-step walk-through of techniques that can be used to perform forensics on Amazon Web Services (AWS) Elastic Cloud Compute (EC2) instances. During the demonstration we’ll use a cloud-based SIFT Workstation and a systematic methodology to find malware and Indicators of Compromise (IOC) on an compromised Elastic Block Storage (EBS) Volume. For more info, see