Education
On-demand channels make SHARE’s unparalleled enterprise IT education accessible whenever and wherever our members need it.

SHARE’d Knowledge

About SHARE'd Knowledge

Webcasts

Upcoming Webcasts

Webcast Replays

Sponsor a Webcast

Security and Compliance Webcast Series

Digital Badging

Education

SHARE'd Conversations

Focus Areas

BitBucket Archives
Events
In-person and online events are a hallmark of SHARE, where plentiful learning and networking benefit the entire community.

About SHARE Events

Event Calendar

Partner Opportunities

Past Events

Proceedings

SHARE Cleveland

Registration

Hotel and Travel

Exhibit and Sponsor

Call for Proposals
Connect
Online forums, a member directory and volunteer opportunities are but a few of the channels available for SHARE members to connect with peers and industry experts.

Volunteer

About SHARE Volunteers

Volunteer Recognition

SHARE Volunteers

Women in IT

SHARE Focus Areas

Membership

Join SHARE

Membership FAQs

Member Directory

User Profile

Communities

Recognition

Awards

In Memoriam

Advocacy & Requirements System
SHARE'd Intelligence
SHARE’d Intelligence the official publication of SHARE, is a leading source for news and education on enterprise solutions. The publication serves as a valuable resource for compelling, timely, relevant, and engaging content that informs and engages SHARE Members and partners.

Subscribe

Submit a Story

Browse Articles
Partners
SHARE delivers unmatched opportunities to showcase your company’s technology, expertise and brand to a highly informed and influential community of enterprise IT professionals.

Partner Overview

Partner Directory

Partner Opportunities

Year-Round

Event
About
Throughout our rich history (since 1955), SHARE has always considered service to end users and the industry as our primary calling. Learn about our mission, vision, history, strategic goals, leadership and more.

About Us

Mission & Vision

SHARE Today

History

Strategic Goals

Leadership

Board of Directors

Past Presidents

Focus Area Leaders

Committees

Elections

Contact Us

Annual Report

Bylaws and Policies

Industry Participation

Events

52586: Attacking OMVS: Yet Another Mainframe Vulnerability Source

Project and Program: z/OS Systems Programming, Service Delivery, Security and Compliance

Tags: Proceedings, SHARE DC 2025, 2025

You may have heard tales of mainframe pentesting and exploitation before - mostly from us! Those stories often focused on the MVS/ISPF side of the platform. But did you know that all those same tricks (and more!) can be pulled off in z/OS Unix System Services (OMVS) as well? The cyber threat landscape presents multiple unique attack paths when it comes to Unix on the mainframe. In this talk, we'll present live demos of real-world scenarios we've encountered during mainframe penetration tests. These examples will showcase what can happen with poor file hygiene leading to database compromises, inadequate file permissions enabling privilege escalation, lack of ESM resource understanding allowing for privileged command execution, and how dataset protection won't save you from these attacks. Attendees will learn how to test these controls themselves using freely available open-source tools. We'll demonstrate how to infiltrate and exfiltrate tools and data, the various methods an advanced threat actor could use for privilege escalation, and how to (partially) detect these attacks. By the end, it will be clear that simply granting access to Unix can be just as dangerous, if not more so, than giving access to TSO on the mainframe.

Back to Proceedings File Library