Hacking Cloud Infrastructure

Duração:

2 dias

Próxima Data:

15 a 16 Sep 2025

Local:

Online

Descrição

With the rapid adoption of cloud infrastructure and the prevalence of hybrid cloud environments among organizations, the need to address cloud misconfigurations has become paramount. This course offers a holistic approach to understanding and mitigating misconfigurations in AWS and Azure. From building and migrating to managing and innovating in the cloud, organizations face increasing pressure to secure their cloud infrastructure effectivel. To achieve this, a deep understanding of cloud attack architecture and hands-on experience with relevant tools and techniques are essential.

This comprehensive 2-day course immerses participants in the attacker's mindset, providing the opportunity to deploy over 20 novel attacks through state-of-the-art labs. The training is delivered by seasoned penetration testers with extensive experience in cloud hacking, gained through real-world engagements.

By the end of the course, participants will be well-equipped to confidently identify vulnerabilities within cloud deployments. This course is a crucial step toward enhancing cloud security in an ever-evolving threat landscape.

*PVP por participante. A realização do curso nas datas apresentadas está sujeita a um quórum mínimo de inscrições.

Destinatários

Cloud administrators and architects
Penetration testers and red teamers
CSIRT/SOC analysts and engineers/blue teams
Developers
Security/IT managers and team leads

Área: Cybersecurity
Certificação Associada: N/A

Quero inscrever-me.

Programa:

INTRODUCTION TO CLOUD COMPUTING

Introduction to the Cloud
Importance of Cloud Security
Shared Responsibility Model in the Cloud
Comparison with Conventional Security Model
Importance of Cloud Metadata API from an Attacker’s perspective

CLOUD ASSET ENUMERATION

Importance of DNS in the Cloud
DNS-based Enumeration
Open-Source Intelligence Gathering (OSINT) techniques for Cloud Asset Enumeration
Username enumeration using Cloud provider APIs

CLOUD STORAGES

Introduction to AWS S3
AWS S3 misconfigurations
Introduction to GCP Storage
Introduction to Azure Storage
Azure: Shared Access Signature (SAS) URL Misconfiguration

INTRODUCTION TO AZURE AND ATTACKING MICROSOFT AZURE AD

Introduction to Azure and Microsoft Entra ID
Azure Application Attacks on App Service, Function App and Storages
Azure Database
Automation Account
Azure Key Vault
Introduction to Microsoft Entra ID authentication methods and risks
Microsoft Entra ID Attacks (Managed User Identities)
Bypassing MFA Security and Conditional Access Policy
Abusing Dynamic Membership Policy

INTRODUCTION TO AWS

Introduction to AWS IAM and Policies
Understanding AWS Policy Evaluation
AWS Cognito Service
IAM: Misconfigurations
Elastic Beanstalk
AWS Cross-Account Misconfigurations
Enumerate roles using Pacu
Gaining access to EC2 instance by abusing instance attribute
Resource based policy misconfiguration
Lambda and API Gateway exploitation
IAM Access Analyzer

DIFFERENCE BETWEEN AWS, AZURE & GCP IAM AND PITALLS

This module offers a concise comparison of Identity and Access Management (IAM) in AWS, Azure, and GCP. It illuminates the key differences and potential pitfalls associated with IAM in these cloud platforms. Participants will gain insights into the nuanced IAM features and challenges specific to each provider, equipping them with a solid understanding to navigate and secure access control effectively.

Pré-requisitos:

Delegates must have the following to make the most of the course:

Basic to intermediate knowledge of cybersecurity (1.5+ years’ experience)
Experience with common command line syntax

Quero inscrever-me.

Partilha:

We meet future and then we make it spark slogan

Precisas de ajuda a encontrar o teu futuro?