Back

Cloud Pentesting Engineer

This course is designed to provide a beginner-friendly yet comprehensive guide to cloud penetration testing, with a strong emphasis on hands-on learning and real-world attack scenarios. By the end of the course, participants will have gained the skills and confidence to conduct basic cloud penetration tests in AWS, Azure, and GCP environments.

Tarek

Lead Trainer

Description
Coming soon

Course Curriculum

Introduction Cloud Environments

4 lessons

1. Overview of Cloud Computing Models: IaaS, PaaS, SaaS

2. Intro to Azure

3. Intro to AWS

4. Intro to GCP

Interacting With The Cloud

3 lessons

5. Interacting using PowerShell

6. Interacting using command line clients

7. Interacting using portals/consoles

Cloud Recon

3 lessons

8. Determining what cloud is in use

9. Recon of cloud services

10. Identifying cloud services in use

Initial Access

6 lessons

11. Username recon

12. Password spraying attacks

13. Different types of phishing attacks

14. Different types of phishing attacks

15. Adversary in the middle attack

16. Bypassing initial defenses like MFA

Exploiting Public Storage

4 lessons

17. Finding public storage in Azure, AWS and GCP

18. Accessing public Azure blobs

19. Accessing public AWS buckets

20. Accessing public GCP buckets

Exploiting Public VMs

3 lessons

21. Exploiting Azure VMs

22. Exploiting AWS EC2 instances

23. Exploiting GCP VMs

Understanding Access Control

3 lessons

24. Understanding and exploiting RBAC in Azure

25. Understanding and exploiting RBAC in AWS

26. Understanding and exploiting RBAC in GCP

Cloud Post-Exploitation

4 lessons

27. Recon as an insider

28. Identifying further services privilege escalation

29. Identifying further services for persistence

30. Looting secrets

Where this course lies in the Roadmap

Beginner Roadmap
6 courses
Azure Hacking Fundamentals cover image
Azure Hacking Fundamentals

Tarek

Professional Enterprise Penetration Testing cover image
Professional Enterprise Penetration Testing

Tarek

96 hr
Enterprise SOC Analyst cover image
Enterprise SOC Analyst

Tarek

Enterprise Incident Responder cover image
Enterprise Incident Responder

Tarek

Active Directory Pentesting Engineer cover image
Active Directory Pentesting Engineer

Tarek

Cloud Pentesting Engineer cover image
Cloud Pentesting Engineer

Tarek

Discover all roadmaps