Attackers evolve to exploit new opportunities, including attacks against cloud systems. As defenders, we also need to evolve, developing new skills and understanding in how attackers exploit cloud platforms, and how we should respond to these incidents.
In this Tech Tuesday workshop you will preview the new SANS SEC504 Hacker Tools, Techniques and Incident Handling course with a look at three modules on cloud attacks and cloud incident response. With hands-on exercises, you'll work on scanning vast ranges of cloud targets to discover shadow cloud systems, you'll see how attackers discover and enumerate cloud storage systems, and you'll look at an end-to-end attack against a cloud deployment to practice your incident response skills.
Prior to the workshop: Download the Cloud Attacks and Incident Response workshop virtual machine. Double-click on the OVA file to import the VM with VMware. Boot the VM after import, then login with the username sec504 and the password sec504.
Please note, we will not be able to troubleshoot or support local VM issues. It is highly encouraged that you download and verify login to the VM before the workshop.