AWS Pentesting Training Feedback - Cyber's Secret

00:00 welcome
00:07 feedback
00:47 more recommandations
00:54 Get in touch

AWS Penetration Testing Training Agenda - June 2023:

Course Introduction
Mitre ATT&CK introduction and mapping learning with ATT&CK
Introduction to AWS Cloud technology
Overview of AWS technology & services
Navigating the cloud portal
Accessing the portal via GUI and programmatically
AWS EC2 (Elastic Cloud Compute) explanation
Cloud Attack tools installation: AWS CLI, Pacu, AWSBucketDump, CloudGoat
Explanation of AWS services: IAM, S3, ARN, VPC
Attack demos and understanding AWS Lambda
Attacking S3 with open buckets
Attacking S3 with misconfigured permissions
Enumerating GitHub for finding hardcoded AWS keys
Explanation of Lambda
Understanding AWS EBS (Elastic Block Storage)
Attack demos:
Enumerating EBS snapshots to find credentials
Attacking EC2 with SSRF to find credentials
Attack on misconfigured IAM policies
Introduction to AWS security services:
AWS CloudWatch
AWS CloudTrail
AWS GuardDuty
AWS Inspector
Explanation of AWS services: AWS RDS, AWS SSO
Explanation of AWS services: AWS Container, AWS Secret Manager
Attack demo: Attacking Lambda with CloudGoat (lambda_privesc)
Attack demo: Attacking IAM (iam_privesc_by_attachment)
Attack demo: Attacking AWS Secret Manager (detection_evasion)

Find the latest services offering here - https://bit.ly/42x2SrE

Get in touch:

🌐 Website: https://cyberssecret.com/
📧 Email: info@cyberssecret.com
📞 Phone: +971 55 193 3640
📱 WhatsApp: https://tinyurl.com/2bxebp7f
📝 Request Form: https://forms.office.com/r/0H0Uw1EzKU

Видео AWS Pentesting Training Feedback - Cyber's Secret канала Cyber's Secret