Category: Cloud Security
- Aligned with MITRE ATT&CK Cloud for AWS
- Enumerate & Design AWS Cloud Attack Surface
- Learn & Understand core AWS Cloud services functionalities
- Pivoting & Lateral Movement using AWS VPC
- Post-Exploitation by abusing mis-configured AWS Services
- Enumerating & Designing Attack Surface of Azure Cloud Services
- Pivoting Azure Control Plane to the Data Plane
- Understanding & Abusing Core Azure services
- Stealth Persistence Access of Azure account by Service Principal
- Privilege Escalation by abusing mis-configured Role Based Access Control
- Mis-use Azure Authentication Methods [PHS, PTA, Federation] & so much more…
• Aligned with MITRE ATT&CK Cloud for Google
• Practically understand Google Cloud Red Team Fundamentals
• Simulate Cyber Kill Chain in Google Cloud Environment
• Target & Abuse Google Enterprise Applications
• Perform Blue Team Operations in Google Cloud Environment
- Inventory Extraction and Attack Map Design for AWS, Azure, GCP & On-Premise
- Exploit widely used Cloud Services e.g., O365, G-Suite and Azure AD etc
- Lateral movement from on-premise to Cloud & vice-versa
- Backdoor Hybrid Multi-Cloud Environment for Stealth Persistence access
- Abusing Mis-Configured Cloud Services for Privilege Escalation
- Exfiltrate Sensitive Data from Hybrid Multi-Cloud Environment
- Bypassing Security Controls in Multi-Cloud Environment
- Exploiting Multi-Cloud Environment using Open-Source Exploitation Tools / Framework
- Begin your Cloud Red Team Journey with MCRTA
- Introduction to AWS, Azure & GCP Cloud Security
- 100% Practical Cloud Security Red Team Course
- Learn Multi-Cloud Red Team Fundamentals
- Join CWL Cloud Red Team Community (Discord Channel)
