SEC588: Cloud Penetration Testing

This one-of-a-kind SANS course equips you with the knowledge and hands-on skills required to perform comprehensive cloud-focused penetration tests and assessments. You will learn the underlying technology powering cloud infrastructure and the vulnerabilities that adversaries leverage in their attacks. Through 27 hands-on labs and practitioner-led instruction, you'll master real-world attack tools and techniques to effectively identify risk to the organization.

What You Will Learn.
With the rise in cloud adoption, continuous technological advancements, and an ever-evolving threat landscape, organizations need to keep up with the complex security challenges specific to cloud-based services and infrastructure. Security professionals must develop penetration testing skills in cloud technologies that enable them to assess risk to the organization and recommend effective mitigations that will protect their critical assets.

You Will Be Able To.
- Conduct cloud-based penetration tests
- Assess cloud environments for vulnerabilities
- Understand cloud environment construction and evidence-gathering
- Evaluate security risks in AWS and Azure
- Apply course knowledge directly to your work
- Test cloud environments through real-world labs
- Differentiate cloud-native, multi-cloud, and hybrid infrastructures
- Conduct penetration tests on microservices
- Understand container and CI/CD pipeline vulnerabilities
- Attack Kubernetes, serverless functions, and Windows containers
- Analyze and attack cloud identity systems and report findings to your organization

SEC588: Cloud Penetration Testing
Size: 24.5 GB
Contains: 1.102 Files, 123 Folders

Course Syllabus
SEC588.1: Architecture, Discovery, and Recon at Scale
SEC588.2: Attacking Identity Systems
SEC588.3: Attacking and Abusing Cloud Services
SEC588.4: Vulnerabilities in Cloud-Native Applications
SEC588.5: Infrastructure Attacks and Red Teaming
SEC588.6 : Capstone Event

FOR EDUCATIONAL PURPOSES ONLY!