Attack & Defend the Cloud Boot Camp

To equip participants with practical skills to identify, exploit, and mitigate common cloud security vulnerabilities across major cloud platforms (AWS, Azure, GCP). This bootcamp simulates real-world cloud attack and defense scenarios.

  • Understand the cloud shared responsibility model

  • Identify misconfigurations in cloud services

  • Cloud reconnaissance and enumeration

  • Exploit vulnerabilities such as open S3 buckets, IAM privilege escalation, insecure APIs

  • Learn how to harden and defend cloud environments

  • Use cloud-native tools and SIEM/SOC tools for detection and response

Module 1: Cloud Threat Landscape & Fundamentals

  • Introduction to Cloud Computing (IaaS, PaaS, SaaS)

  • Cloud Security Models – Shared Responsibility

  • Common Attack Vectors in Cloud

  • Cloud Pentest Methodology (recon to privilege escalation)

Module 2: Cloud Attack Hands-On (Red Team)

  • Misconfigured AWS S3 Buckets

  • Exposed EC2 Metadata APIs

  • IAM Privilege Escalation in AWS

  • Azure Storage and Key Vault Attacks

  • GCP Bucket Enumeration and Exploitation

  • Exploiting Serverless Functions (Lambda, Azure Functions)

Module 3: Cloud Defense (Blue Team)

  • Cloud Logging and Monitoring (AWS CloudTrail, Azure Monitor)

  • Hardening IAM Policies and RBAC

  • S3 Bucket Policies: Least Privilege

  • Setting up Guardrails: SCP, Azure Policies

  • Defending with WAF, Shield, Security Hub

Module 4: SOC/IR in the Cloud

  • Using AWS Detective, Azure Sentinel, or open-source SIEM (Wazuh)

  • Cloud Incident Response Playbooks

  • Logging Analysis and Forensics

Professional Cloud and Network Consulting Services

REACH US

hello@graphitenetworks.in

+91 73068 94267

© 2025. All rights reserved.