Cloud Security: AWS Edition (Save $100 Through March 31!)
Apr 22 - 20
Most AWS deployments are breached by a common set of vulnerabilities which attackers repeatedly use. In 5 weeks, this bootcamp teaches you to identify, exploit and secure vulnerabilities in the 5 most commonly used AWS components, so you can be a job-ready Cloud Security practitioner
Why INE Bootcamps?
We know that even the most active learners benefit from having direct access to instructors. We designed INE Bootcamps so that you will have the opportunity to learn the latest and greatest techniques, while having the opportunity to ask your own, personal questions.
Buy bootcamp
With offerings from both INE and Pentester Academy, take advantage of the opportunity to dig deeper into existing INE topics or to work within custom lab environments to learn complex enterprise techniques.
Build Your Cloud Credentials
Become a Pentester Academy Cloud Security Professional. The PACSP is proof that you’ve mastered the basics of the five most commonly used components in an AWS cloud deployment. The exam prepares you for real-world scenarios in pentesting production cloud deployments in AWS – a useful addition to the arsenal of any professional pentester. This certification of completion is granted after attending all five live sessions. Module 1: Identity and Access Management (IAM) Module 2: API Gateway Attack-Defense Module 3: Serverless Functions: Lambda Module 4: DynamoDB and other Cloud Databases Module 5: Cloud Storage: S3 Misconfigurations
Limited Spots - Save Yours Today
Learn More About Pentester Academy
Sign Up for INE and Begin Learning Now
Schedule
This five week bootcamp is split into five modules, designed to prepare you for everything you'll encounter in WiFi penetration testing. Checkout the daily schedule to understand what you'll learn over its 15 hours of live training.
Introduction to IAM
Enumerating IAM Users and Roles
Cross-account AWS Roles and User Enumeration
Abusing Overly Permissive IAM Trust Policies
Escalating Privileges by Abusing IAM Policies and Permissions
Introduction to API Gateway
Bypassing Authentication by Verb Tampering
Abusing Overly Permissive Resource Policies
Attacking Misconfigured Private API Endpoints
Performing Denial of Service Attack on API Gateway
Introduction to AWS Lambda
Enumerating Lambda Functions and Layers
Event Data Injection
Abusing Overly Permissive Resource Policies
Abusing AWS Lambda Permissions
Manipulating Function Execution Flows
Retrieving Application Secrets, Keys, and Credentials
Retrieving Sensitive Information from Lambda Runtime API
Exploiting Vulnerable Components and Custom Runtimes
Abusing Temporary and Shared File Systems
Maintaining Access on AWS Account (Backdoor)
Introduction to DynamoDB
NoSQL Injection Attack on a DynamoDB-based Application
SQL Injection Attack through PartiQL Support on a DynamoDB-based Application
NoSQL Injection Attack on a MongoDB-based Application
SQL Injection Attack on an RDS-based Application
Introduction to S3
Enumerating Public S3 Buckets
Identifying Bucket Policy/ACL Constraints on an S3 Bucket
Identifying Anonymous Write Operations on An S3 Bucket
Leveraging Misconfigured Bucket Policies and ACPs
Identifying Writable Buckets Without Performing Write Operations
Chaining Web Application Attacks Through S3 Resources
Bootcamp overview
The syllabus of this bootcamp focuses on the teaching you the fundamentals and exploits for the 5 most commonly used components in AWS deployments:
- Identity and Access Management (IAM)
- API Gateway
- Lambda
- Cloud Databases
- Simple Storage Service (Amazon S3)
To further consolidate your skills, you will be prepared to take our exam and earn the Pentester Academy Cloud Security Professional (PACSP) certification.
Dictated by
Jeswin Mathai
Senior Security Researcher
View other upcoming INE Bootcamps
Looking for something else? INE offers several bootcamps per month, meaning that there is always something for you and your team to learn and participate in.
Common questions about INE
If you have a question you don’t see on this list, please visit our Frequently Asked Questions page by clicking the button below. If you’d prefer getting in touch with one of our experts, we encourage you to call one of the numbers above or fill out our contact form.
Can I buy Bootcamps separately if I am on the Individual Monthly or Annual plan?
How much do Bootcamps cost?
