Skip to main content
Room Banner
Back to all walkthroughs
Room Icon

The Leaky Bucket

Max room.

Understand one of the most common S3 misconfigurations and learn how to remediate it.

medium

30 min

1

User profile photo.
User profile photo.

To access material, start machines and answer questions login.

Publicly accessible buckets have been responsible for some of the largest data exposures in cloud security history. Even though today makes it very hard to publicly expose buckets, this misconfiguration is still something you can encounter in the wild and should be a quick check-and-fix in your security toolbelt.

Learning Objectives

  • Understand the access control layers and how they interact
  • How to identify public exposures
  • Remediate a publicly accessible bucket
  • Build a secure bucket deployment from the ground up

Prerequisites

Answer the questions below

Let's patch some buckets!