Public Cloud Environments can make things, well, rather public. While there are ways to prevent this, and the cloud providers have made strides, retroactive changes are not a thing. As such, we still find very poorly configured environments today.
Join us for this first of eight workshops in the Aviata Solo Flight Challenge Workshop series. We will show you how to look at a target organization's misconfigured public items. This lab will begin by showing you how to obtain a user's account number; from here, you can further look for public items in different storage environments. Finally, you can take advantage and find additional things within the environment.
Each monthly workshop in the series is independent of the others. There are no technical or educational dependencies from one to the others.
Who Should Attend
This workshop is ideal for IT security professionals, network engineers, and system administrators who are focused on strengthening cloud security through effective penetration testing techniques.
Learning Objectives
- Modeling attack groups that are currently untracked but are compromising cloud assets
- Look at the attack surfaces and how to discover open buckets, open images, open snapshots which could lead to sensitive information leakage
- Learn to how to detect and harden these environments
Scroll down for prerequisites and laptop requirements.
