Breaching AWS2024-04-21T22:55:13+03:00

BREACHING AWS

Breaching AWS labs provide a simulated environment in which a fictitious financial institution named “TwoCapital” has its infrastructure hosted on the AWS platform.

Within these labs, students can acquire knowledge about utilizing AWS-specific attack methods, which encompass tasks such as performing AWS reconnaissance, executing privilege escalation strategies, and exploiting AWS services.

0
Attack Paths
0
AWS Services in 2 Regions
0
Flags

Course Contents:

  • AWS Reconnaissance

  • AWS Phishing Technique (Device Code)

  • Extract Secrets from Secret Manager, Storages, Databases etc

  • Intercept sensitive data by utilizing Simple Notification Service (SNS)

  • Abuse Kubernetes Misconfiguration

  • Abuse Container Registry Permissions

  • Laterally Movement Across AWS Services

  • Utilize Rancher to get Shell on EKS Pod

  • Abuse Misconfigure IAM Permissions

  • Enumerate AWS Identity Center Directory

  • Extract and Exploit Lambda Function

  • Exploit Misconfigured EC2 Instance

Who is it for?

Anyone keen in hands-on learning about AWS Security concepts. Our students usually include:

  • Penetration Testers
  • Cloud Architects
  • Cloud Security Engineers
  • DevOp Teams
  • Security Enthusiasts
  • Cyber Security Graduaduates

What will you gain?

Upon completing Breaching AWS course you will be able to perform:

  • AWS Enumeration and Reconnaissance
  • Identify Cloud Misconfigurations
  • Exploit Access Control Gaps
  • Lateral Movement
  • Phishing Attack Simulations
  • AWS Penetration Tests
  • Conduct Cloud Security Audits

Prerequisites

Participants are expected to be able to self-study. Basic knowledge of AWS and a general understanding of cloud security fundamentals is expected.

Other Requirements

No additional hardware or software is required apart from a stable internet connection. Access to the BAWS labs is provided via a dedicated AWS VM.

Offensive AWS Security Professional (OAWSP)

Earn the OAWSP badge by enrolling to Breaching AWS course and passing the practical exam. Every student has one attempt to complete the exam.

By displaying this badge it shows that holder has:

  • Knowledge of AWS Security Fundamental Concepts.
  • Strong understanding of AWS Security misconfigurations and how to exploit them.
  • Knowledge of AWS Cloud Specific Attacks.
  • The ability to perform AWS Security Assessments.

Pricing

Breaching AWS

$599
  • 30 Days Cloud Labs Access
  • Digital Content
  • 1x OAWSP Exam Attempt
  • Certificate of Completion
Enroll

Breaching AWS

$799
  • 60 Days Cloud Labs Access
  • Digital Content
  • 1x OAWSP Exam Attempt
  • Certificate of Completion
Enroll

Breaching AWS+

$1000
  • 60 Days Cloud Lab Access
  • Digital Content + PDF Training Guide
  • 2x OAWSP Exam Attempts
  • Certificate of Completion
  • Priority Support
Get A Quote

Reviews

If you are looking for Intense 24 hours exam pattern with real world cloud misconfiguration, you surely go ahead for OWASP.

Dhiyaneshwaran, AppSec Researcher @ pdiscoveryio

Earning this badge signifies a leap in my understanding of AWS security vulnerabilities and defense strategies. I’m now more equipped than ever to navigate the cloud’s complex security landscape.

Dauntae S., Security Engineer @ DailyPay

Earning this badge signifies a leap in my understanding of AWS security vulnerabilities and defense strategies. I’m now more equipped than ever to navigate the cloud’s complex security landscape.

Dauntae S., Security Engineer @ DailyPay
Profile Picture

Both the exam and the content were incredibly engaging and enjoyable. I learned numerous techniques. I highly recommend it without hesitation!

Manuel Perez, AppSec Engineer @ Hackmetrix

FAQ

Can I take the OAWSP exam without taking the course?2023-12-06T17:07:38+02:00

No it’s not possible to take the OAWSP exam without purchasing the course. However, if you fail at the fist attempt you can purchase an exam voucher and take the exam again.

Does the Breaching AWS course include videos?2023-12-06T17:11:16+02:00

No currently the Breaching AWS course consists of written material and access to the CloudBreach labs. Although there are no recorded videos, it should be noted that training material is thorough and clear enough for anyone to follow. The training material includes many screenshots showing the command, output of each command along with explanation and additional resources for the student to read.

What is the OAWSP exam format?2023-12-06T17:26:30+02:00

The exam is practical and based on the material taught during the Breaching AWS course. The candidate is given access to a cloud environment for 24 hours. Upon solving the challenge and capturing the exam flag, you will then have another 24 hours to submit a brief report. By passing the exam candidates are awarded the OAWSP digital badge.

Do I need to install any kind of software?2023-12-06T17:18:44+02:00

To start the CloudBreach labs you do not need to install any kind of software apart from a standard web browser. The training grounds are fully hosted on Microsoft Azure cloud.  Remote access will be given through a browser.

Can I refund the remaining lab time?2024-02-12T22:46:45+02:00

Unfortunately not. We do not offer refunds for any digital training courses purchased on our website. Before making a purchase, we encourage you to review the course description, objectives, and any available previews to ensure the course meets your learning needs and expectations. Read the refund policy at cloudbreach.io/refund-policy

Can I extend my lab access after purchasing the course?2023-12-06T17:30:54+02:00

Yes, Labs access can be extended at anytime through the CloudBreach portal by navigating to cloudbreach.io/addons. If you have any issues please ask one of the CloudBreach administrators.

Logo
Go to Top