Back to all modules

Attacking and Defending Core Services

Explore security misconfiguration on commonly used AWS services, including EC2, S3, VPC and more

The most common use cases for AWS revolve around using compute capacity, storage and virtual networking appliances. These services are also the ones that attackers most commonly use to get a foothold into AWS environments. Exploit common attack scenarios within these services and gain a deeper understanding of how these can be mitigated.

0%

AWS S3 - Attack and Defense

An overview of security features and common attacks for the AWS S3 service.

0%

Amazon EC2 - Attack & Defense

Learn about EC2 and how to compromise an EC2 Instance.

0%

AWS VPC - Attack and Defense

Learn the basics of AWS Virtual Private Cloud.

0%

AWS VPC - Data Exfiltration

Exercise on compromising an existing VPC.

Need to know

Introduction to IAM

Understand the parts of the identity and access management service to set a good foundation for attacking and defending this service.

Next steps

Attacking and Defending Serverless

Serverless technologies are popular when designing infrastructure. Work with various AWS components to understand how they can be exploited.

What are modules?

A learning pathway is made up of modules, and a module is made of bite-sized rooms (think of a room like a mini security lab).

Module tree diagram

We use cookies to ensure you get the best user experience. For more information contact us.