Offensive Cloud Security Training

Prior pen test / security experience is not a strict requirement, however, some knowledge of Cloud Services and familiarity with common command-line syntax will be beneficial.

Uncover and harden your organisation’s cloud attack surface by building a team that can test, identify, and guide developers to remediate – and further avoid – the emergence of cloud-based vulnerabilities and misconfigurations.

Trained delegates can:

• Perform testing to identify and safely exploit complex vulnerabilities and security misconfigurations in AWS, Microsoft Azure, and Google Cloud Platform (GCP)
• Design this testing around real-world attacker behaviour and tooling, making it relevant to the threats facing your organisation
• Identify the attack surface exposure created by cloud-based services such as virtual machines (VMs), buckets, container as a service (CaaS) platforms, and serverless functions
• Exploit, defend, and audit containerisation environments
• Collaboratively plan cloud defence strategies that include patching, asset inventory management, and other security controls
• Recommend and help implement cloud-based attack detection and response tactics
• Understand the business impact of cloud misconfigurations and vulnerabilities, and articulate this to key stakeholders
• Contribute to a secure cloud roadmap by understanding the balance between cloud growth and risk and the implications of different cloud architecture models
• Take on greater responsibility in the team and become an advocate of security in the wider business

• Introduction to cloud and why cloud security matters
• Comparison with conventional security models
• Shared responsibility model
• Legalities around Cloud Pentesting

• DNS based enumeration
• OSINT techniques for cloud-based asset

• Serverless based attacks (AWS Lambda / Azure & Google functions)
• Web application Attacks
• Exposed Service ports

• Storage Attacks
• Azure AD Attacks
• Containers and Kubernetes Clusters
• IAM Misconfiguration Attacks
• Roles and permissions-based attacks
• Attacking Cognito misconfigurations

• Persistence in Cloud
• Post exploit enumeration
• Snapshot access
• Backdooring the account

• Preparing for the audit
• Automated auditing via tools
• Golden Image / Docker image audits
• Relevant Benchmarks for cloud

• Inventory Extraction for AWS, Azure and GCP
• Continuous inventory management

• Principle of least privilege
• Control Plane and Data Plane Protection
• Financial Protections
• Metadata API Protection
• Cloud specific Protections
• Windows / Linux IaaS auditing

• Setting up Monitoring and logging of the environment
• Identifying attack patterns from logs
• Monitoring in multi-cloud environment

• Automated Defence techniques
• Cloud Defence Utilities
• Validation of Setup