Sign In Start Free Trial
Account

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • AWS Penetration Testing
  • Toc
  • feedback
AWS Penetration Testing

AWS Penetration Testing

By : Jonathan Helmus
2.3 (12)
close
AWS Penetration Testing

AWS Penetration Testing

2.3 (12)
By: Jonathan Helmus

Overview of this book

Cloud security has always been treated as the highest priority by AWS while designing a robust cloud infrastructure. AWS has now extended its support to allow users and security experts to perform penetration tests on its environment. This has not only revealed a number of loopholes and brought vulnerable points in their existing system to the fore, but has also opened up opportunities for organizations to build a secure cloud environment. This book teaches you how to perform penetration tests in a controlled AWS environment. You'll begin by performing security assessments of major AWS resources such as Amazon EC2 instances, Amazon S3, Amazon API Gateway, and AWS Lambda. Throughout the course of this book, you'll also learn about specific tests such as exploiting applications, testing permissions flaws, and discovering weak policies. Moving on, you'll discover how to establish private-cloud access through backdoor Lambda functions. As you advance, you'll explore the no-go areas where users can’t make changes due to vendor restrictions and find out how you can avoid being flagged to AWS in these cases. Finally, this book will take you through tips and tricks for securing your cloud environment in a professional way. By the end of this penetration testing book, you'll have become well-versed in a variety of ethical hacking techniques for securing your AWS environment against modern cyber threats.
Table of Contents (17 chapters)
close
1
Section 1: Setting Up AWS and Pentesting Environments
4
Section 2: Pentesting the Cloud – Exploiting AWS
12
Section 3: Lessons Learned – Report Writing, Staying within Scope, and Continued Learning

Chapter 3: Exploring Pentesting and AWS

Welcome to the next portion of the journey. Here, we will begin to take the knowledge that we learned from the previous two chapters and start applying it to further our knowledge about pentesting and AWS. It is important that you understand the previous two chapters because we will be building more instances throughout this book and will be using the pentesting methodology you read about in Chapter 2, Pentesting and Ethical Hacking.

For this chapter, we are going to focus on what it means to scan and enumerate information from the host that we built, as well as other general systems. Scanning and enumerating is one of the most important steps in pentesting, so it's crucial that we take a trip down recon lane to understand various ways to enumerate and understand our enumeration tactics. We will also learn about various attack paths in both pentesting and adversarial assessments and mindsets. It's crucial to understand that reconnaissance...

bookmark search playlist download font-size

Change the font size

margin-width

Change margin width

day-mode

Change background colour

Close icon Search
Country selected

Close icon Your notes and bookmarks

Delete Bookmark

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete