Going beyond shells! - Hacking AWS, Google Cloud, DigitalOcean and Aliyun (Virtual)

A fast paced, scenario driven hands-on training built on real world discovery and exploitation of services and assets in AWS, Google Cloud, DigitalOcean and Alibaba Cloud. The training will take students through automated infrastructure creation, security misconfigurations and their abuses that will allow them to go beyond the standard shells that attackers aim for.

In this course you will experience

• Environments spanning across multiple cloud platforms.

• Exploiting different services in the array of cloud environments

• How same services are implemented differently by each cloud service provider

• How to chain attacks from a web exploit to becoming iam owner

The students will be tracking their progress using a capture the flag platform throughout the course duration.