To access material, start machines and answer questions login.
An application runs on an instance. It has the basic requirements to read from a specific bucket, but "someone" created an role with full access and wildcards in the policy. The application works, so nobody complained or revisited the permissions.
You will take on the role of a security analyst to investigate this misconfiguration, understand why it is bad, and learn to build it securely from day one.
Learning Objectives
- Understand how instance profiles and roles work together
- Understand how can expose role credentials
- Identify over-privileged roles
- Remediate and enforce security best practices
- Build a secure service role from day one
Prerequisites
- Being able to set up your environment (First Steps Into room)
- Basic commands ( Fundamentals room)
- Have a basic understanding of the service (Introduction to room)
Power overwhelming.
Ready to learn Cyber Security?
The The Overpowered Role room is only available for Premium or Max subscribers. Signup now to access more than 500 free rooms and learn cyber security through a fun, interactive learning environment.
Already have an account? Log in
