Nick Frichette (@Frichette_n)

Title	Vulnerabilities	Programs	Authors
Non-Production Endpoints as an Attack Surface in AWS	Cloud CloudTrail Bypass Information Disclosure	AWS	Nick Frichette (@Frichette_n)
Amplified exposure: How AWS flaws made Amplify IAM roles vulnerable to takeover (CVE-2024-28056)	Cloud Privilege Escalation	AWS	Nick Frichette (@Frichette_n)
Bypass Cognito Account Enumeration Controls	Username Enumeration	AWS	Nick Frichette (@Frichette_n)
Two Minor Cross-Tenant Vulnerabilities in AWS App Runner	Cross-Tenant Vulnerability Cloud	AWS	Nick Frichette (@Frichette_n)
Using an Undocumented Amplify API to Leak AWS Account IDs	Cloud Information Disclosure	AWS	Nick Frichette (@Frichette_n)
Bypassing CloudTrail in AWS Service Catalog, and Other Logging Research	Cloud CloudTrail Bypass	AWS	Nick Frichette (@Frichette_n)
AWS CloudTrail vulnerability: Undocumented API allows CloudTrail bypass	Cloud Logic Flaw CloudTrail Bypass	AWS	Nick Frichette (@Frichette_n)
A Confused Deputy Vulnerability in AWS AppSync	Confused Deputy Cloud Privilege Escalation	AWS	Nick Frichette (@Frichette_n)
XSS in the AWS Console	XSS CSP Bypass CSTI	AWS	Nick Frichette (@Frichette_n)

Page 1 of 1