banner
LightNews
frichetten.com
Nick Frichette
@frichetten.com
1.5K followers 240 following 320 posts
Staff Security Researcher @datadoghq | DEF CON/Black Hat USA main stage speaker | he/him | OSCP OSWE | I turned hacking AWS into a career | Tweets are my own | Created https://hackingthe.cloud
hackingthe.cloud
Posts Media Videos Starter Packs
frichetten.com
Nick Frichette @frichetten.com · 7d
Ah yes, the alloy known as '<span class="no-text-formatting">white gold</span>'
5
frichetten.com
Nick Frichette @frichetten.com · 8d
Today in weird things family members say about technology, this is “the weird internet frisbee”.
1 1 8
frichetten.com
Nick Frichette @frichetten.com · 10d
New on @hackingthe.cloud! A great post by Federico Lucini on bypassing AWS Network Firewall egress filtering!

hackingthe.cloud/aws/post_exp...
AWS Network Firewall Egress Filtering Bypass - Hacking The Cloud
Bypass AWS Network Firewall Egress Filtering using SNI spoofing and Host Header manipulation.
hackingthe.cloud
3 5
frichetten.com
Nick Frichette @frichetten.com · 16d
We’re looking for a researcher specializing in generative AI security. You’ll be a part of our Trust, Detection & Threat Intelligence org, helping secure Datadog from emerging threats, developing new detection content for the security products, and spearheading the development of entirely new ones!
2 1
frichetten.com
Nick Frichette @frichetten.com · 16d
Are you interested in pushing the boundaries of Gen AI security? Do you want to join an accomplished team of researchers, software engineers, and hackers? Join us!

careers.datadoghq.com/detail/71207...
Senior Security Researcher - GenAI | Datadog Careers
We're building a platform that engineers love to use. Join us, and help usher in the future.
careers.datadoghq.com
1 1 1
frichetten.com
Nick Frichette @frichetten.com · 17d
Shout out to @flekyy90.bsky.social for not one, but two new articles on Hacking the Cloud! If you're interesting in learning more persistence methods definitely check them out!

hackingthe.cloud/aws/post_exp...
AWS CodeBuild GitHub Runner Persistence - Hacking The Cloud
Abusing the CodeBuild managed GitHub Actions runner integration to obtain long‑term access to an AWS environment.
hackingthe.cloud
1 6
frichetten.com
Nick Frichette @frichetten.com · 21d
Added a new challenge coin to the display today, in recognition of my contributions to the AWS Vulnerability Disclosure Program. I’m excited to continue pushing the boundaries of AWS security and helping to build a more secure cloud!
1 10
frichetten.com
Nick Frichette @frichetten.com · 22d
@fwdcloudsec.org Europe 2025 was incredible! Amazing talks, amazing research, and amazing people. There is no other conference I would recommend for cloud security people. Looking forward to next year!
8
frichetten.com
Nick Frichette @frichetten.com · 24d
Good morning @fwdcloudsec.org! If you would like exclusive, limited edition, holographic stickers, come find me!
5
frichetten.com
Nick Frichette @frichetten.com · 26d
Looking forward to seeing everyone in Berlin! Safe travels! @fwdcloudsec.org
4
frichetten.com
Nick Frichette @frichetten.com · Sep 7
you need to properly ensure your roles have the minimum permissions, you need to ensure your trust policies aren’t overly broad, and you need to remember that if someone pops your pipeline they probably have root in prod.
1 4
frichetten.com
Nick Frichette @frichetten.com · Sep 7
While not explicitly stated, I do want to stress: Cloud security people aggressively preach not storing long lived AWS access keys in CI/CD pipelines, and that you should instead use things like OIDC. However, that isn’t a silver bullet. In addition…
1 1 13
Reposted by Nick Frichette
khaberkorn.bsky.social
Karen Haberkorn @khaberkorn.bsky.social · Sep 6
Thanks to folks including @frichetten.com for feedback about our Bedrock API key launch. We're listening. Yesterday, we updated Bedrock and IAM docs (see docs.aws.amazon.com/bedrock/late...) to clarify that these are service-specific credentials and how to prevent their use in your environment. 1/2
1 2 6
frichetten.com
Nick Frichette @frichetten.com · Sep 2
For any security research leaders attending @fwdcloudsec.org EU, DM me. I’d love to meet with you and chat about your organizational structure! Who do you report to, how do you divide your teams, what are your success criteria, etc.
1
frichetten.com
Nick Frichette @frichetten.com · Aug 29
AWS’s commitment to this host name template is incredible. It’s everywhere!
frichetten.com
Nick Frichette @frichetten.com · Aug 21
Major shout out to @andoniaf.unicrons.cloud for adding three new privilege escalation techniques to the Hacking the Cloud catalog! Contributions like this make everything possible.
hackingthe.cloud/aws/exploita...
AWS IAM Privilege Escalation Techniques - Hacking The Cloud
Common techniques that can be leveraged to escalate privileges in an AWS account.
hackingthe.cloud
2 8
frichetten.com
Nick Frichette @frichetten.com · Aug 20
I bet! With us there was some kind of slow water leak in the kitchen which has hardwood floors. We didn’t discover this until we were having the floors refinished. “Does that look like water staining?” 😬
1 1
frichetten.com
Nick Frichette @frichetten.com · Aug 20
If you’re thinking of buying a house, please get two inspections. Or budget 2-5% for repairs that the inspectors miss. Or just don’t buy a house T_T
2 5
Reposted by Nick Frichette
securitylabs.datadoghq.com
Datadog Security Labs @securitylabs.datadoghq.com · Aug 20
Enumerating AWS the quiet way: CloudTrail-free discovery with Resource Explorer

by @frichetten.com

securitylabs.datadoghq.com/articles/enu...
Enumerating AWS the quiet way: CloudTrail-free discovery with Resource Explorer | Datadog Security Labs
Discover how attackers could quietly enumerate AWS resources via Resource Explorer, and how Datadog and AWS worked together to close the visibility gap.
securitylabs.datadoghq.com
4 5
frichetten.com
Nick Frichette @frichetten.com · Aug 19
Edit: razor blade?*
We don’t know for sure yet.
frichetten.com
Nick Frichette @frichetten.com · Aug 19
Meet my enemy of the day. A piece of metal (razor blade) in my tire.
1 2
frichetten.com
Nick Frichette @frichetten.com · Aug 19
Old and busted: Cloud attackers making noisy List/Describe calls.

New hotness: Laundering enumeration calls through an AWS service silently.

Or at least, that used to work, until @datadoghq.com partnered with AWS to close this gap. Read more here:
securitylabs.datadoghq.com/articles/enu...
Enumerating AWS the quiet way: CloudTrail-free discovery with Resource Explorer | Datadog Security Labs
Discover how attackers could quietly enumerate AWS resources via Resource Explorer, and how Datadog and AWS worked together to close the visibility gap.
securitylabs.datadoghq.com
4 10
frichetten.com
Nick Frichette @frichetten.com · Aug 14
I can believe it! I’ll have to check that out.
frichetten.com
Nick Frichette @frichetten.com · Aug 13
If you're looking for a sci-fi book recommendation, I REALLY enjoyed Project Hail Mary. A few rough edges here and there but overall it was fantastic!
hardcover.app/books/projec...
Nick Frichette's Review of Project Hail Mary by Andy Weir - Hardcover
Read Nick Frichette's review of Project Hail Mary by Andy Weir on Hardcover
hardcover.app
1 2 4
frichetten.com
Nick Frichette @frichetten.com · Aug 5
I’m skipping out on summer camp this year. Hope everyone has fun! Stay hydrated and shell responsibly! I’m in our New York office this week, and you could be too! We have over 170 open positions across engineering. careers.datadoghq.com/all-jobs/?pa...
1 7