Amazon Cloud Attack and Defense Bootcamp
Get hands-on experience with attacking and defending AWS in a live 4-week-long instructor-
led bootcamp. Attempt the Amazon Cloud Red Team Professional (ACRTP) certification and prove your skills.
led bootcamp. Attempt the Amazon Cloud Red Team Professional (ACRTP) certification and prove your skills.
Already enrolled? Access here
Amazon Cloud Attack and Defense Bootcamp Overview
Amazon Web Services is the current market leader in public cloud!
This comprehensive 4-week bootcamp and associated structured learning path provide students with foundational concepts, essential security tools and techniques, and instruction in attacking, defending and auditing AWS environments.
Get hands-on with external and assume breach scenarios, and learn how to audit AWS configuration, simulate compromise and respond to threats.
Having successfully completed the Amazon Cloud Attack and Defense bootcamp and learning path, you'll be prepared to demonstrate your skills in the fully hands-on and unproctored exam lab. The exam challenges you to apply your newfound expertise in completing an exploitation chain and getting the flag.
The exam environment is dynamic, with the flag and scenario changing periodically to ensure the credibility of the Amazon Cloud Red Team Professional (ACRTP) certification when applying for AWS security roles.
Prerequisites and key learning outcomes
You should know your way around the Windows or Linux command line! Although familiarity with AWS is helpful, it isn't required.
Students who successfully complete the 4-week bootcamp and structured learning path, and subsequently pass the exam to earn the Amazon Cloud Red Team Professional (ACRTP) certification, have demonstrated proficiency in the following areas:
- Understand key Amazon Web Services (AWS) concepts and services
- Simulate compromising a developer account to test the blast radius
- Perform AWS security audits and remediate vulnerabilities
- Leverage AWS resources to gain initial access and move laterally
- Use modern phishing frameworks to gain initial access to AWS
- Abuse compromised credentials for lateral and vertical movement
- Hands-on purple teaming simulating real-world attacks and defenses
- Expand access through DevOps platforms and OpenID Connect
- Exploit misconfigured IAM roles and trust policies to increase access
- Attack and defend Amazon EC2 and Elastic Beanstalk environments
- Detect cloud threats using Splunk, GuardDuty, Athena and CloudTrail
AWS security learning path
In addition to the live, instructor-led bootcamp, students get access to a fully structured learning path covering penetration testing, incident detection and response in AWS. This includes access to selected premium AWS security labs.
If you aspire to become a penetration tester, red team operator or cloud security professional focused on AWS, this learning path has been created for you!
- Lifetime access to the bootcamp recordings and custom content, and 45 days lab access. Lab access can be extended for $20 per month with a Pwned Labs Pro subscription.
- Complete the bootcamp and learning path to prepare for the Amazon Cloud Red Team Professional (ACRTP) certification. More information on the bootcamp, learning path and ACRTP exam can be found on the FAQs page.
Focus on trending techniques and tradecraft
The Amazon Cloud Attack and Defense bootcamp showcases trending techniques and tradecraft used by real threat actors, including AMBERSQUID and SCARLETEEL. The realistic labs simulate actual company environments and active users in AWS, that you are likely to come across during engagements or in your own organization.
- Identify, replicate and detect tradecraft from recent cloud breaches
- Explore various methods to complete the same tasks and become tool-agnostic
- Learn how to evict threats and rotate/reset various forms of credentials
Get to know your trainer
Ian Austin is a security researcher and educator with a career spanning over 20 years in technical, security and leadership roles for global enterprises.
Ian was Head of Content at Hack The Box, a leading online platform for cybersecurity training and assessment. He also participated in the Green Team of Locked Shields, a NATO cyber defense exercise, contributing to the design and execution of realistic scenarios.
He is the founder of Pwned Labs, providing gamified and immersive cloud security labs for red and blue teams - https://pwnedlabs.io
Sessions schedule (December 2024 Batch)
This live bootcamp is delivered quarterly. The December batch of the Amazon Cloud Attack and Defense Bootcamp runs for 4 weeks, starting December 7th through to December 28th. The 4-hour, instructor-led live classes will take place using Zoom, and in private chat channels available in the Pwned Labs Discord. You'll receive an email after purchase with all the information you need to participate, including a breakdown of each session.
Can't make a session? We've got you! A Zoom recording will be available to watch and catch up a couple of hours after the end of each session.
- Live session 1: Saturday, December 7 @ 5pm-9pm UTC
- Live session 2: Saturday, December 14 @ 5pm-9pm UTC
- Live session 3: Saturday, December 21 @ 5pm-9pm UTC
- Live session 4: Saturday, December 28 @ 5pm-9pm UTC
Amazon Cloud Attack and Defense Bootcamp
Get hands-on experience with attacking and defending AWS environments in a live 4-week-long instructor-led bootcamp. Attempt the Microsoft Cloud Red Team Professional (ACRTP) certification and prove your skills.
Already enrolled? Access here
Amazon Cloud Attack and Defense Bootcamp Overview
Amazon Web Services is the current market leader in public cloud!
This comprehensive 4-week bootcamp and associated structured learning path provide students with foundational concepts, essential security tools and techniques, and instruction in attacking, defending and auditing AWS environments.
Get hands-on with external and assume breach scenarios, and learn how to audit AWS configuration, simulate compromise and respond to threats.
Having successfully completed the Amazon Cloud Attack and Defense bootcamp and learning path, you'll be prepared to demonstrate your skills in the fully hands-on and unproctored exam lab. The exam challenges you to apply your newfound expertise in completing an exploitation chain and getting the flag.
The exam environment is dynamic, with the flag and scenario changing periodically to ensure the credibility of the Amazon Cloud Red Team Professional (ACRTP) certification when applying for AWS security roles.
Prerequisites and key learning outcomes
You should know your way around the Windows or Linux command line! Although familiarity with AWS is helpful, it isn't required.
Students who successfully complete the 4-week bootcamp and structured learning path, and subsequently pass the exam to earn the Amazon Cloud Red Team Professional (ACRTP) certification, have demonstrated proficiency in the following areas:
- Understand key Amazon Web Services (AWS) concepts and services
- Simulate compromising a developer account to test the blast radius
- Perform AWS security audits and remediate vulnerabilities
- Leverage AWS resources to gain initial access and move laterally
- Use modern phishing frameworks to gain initial access to AWS
- Abuse compromised credentials for lateral and vertical movement
- Hands-on purple teaming simulating real-world attacks and defenses
- Expand access through DevOps platforms and OpenID Connect
- Exploit misconfigured IAM roles and trust policies to increase access
- Attack and defend Amazon EC2 and Elastic Beanstalk environments
- Detect cloud threats using Splunk, GuardDuty, Athena and CloudTrail
AWS security learning path
In addition to the live, instructor-led bootcamp, students get access to a fully structured learning path covering penetration testing, incident detection and response in AWS. This includes access to selected premium AWS security labs.
If you aspire to become a penetration tester, red team operator or cloud security professional focused on AWS, this learning path has been created for you!
-
- Lifetime access to the bootcamp recordings and custom content, and 45 days lab access. Lab access can be extended for $20 per month with a Pwned Labs Pro subscription.
- Complete the bootcamp and learning path to prepare for the Amazon Cloud Red Team Professional (ACRTP) certification. More information on the bootcamp, learning path and ACRTP exam can be found on the FAQs page.
Focus on trending techniques and tradecraft
The Amazon Cloud Attack and Defense bootcamp showcases trending techniques and tradecraft used by real threat actors, including AMBERSQUID and SCARLETEEL. The realistic labs simulate actual company environments and active users in AWS, that you are likely to come across during engagements or in your own organization.
- Identify, replicate and detect tradecraft from recent cloud breaches
- Explore various methods to complete the same tasks and become tool-agnostic
- Learn how to evict threats and rotate/reset various forms of credentials
Get to know your trainer
Ian Austin is a security researcher and educator with a career spanning over 20 years in technical, security and leadership roles for global enterprises.
Ian was Head of Content at Hack The Box, a leading online platform for cybersecurity training and assessment. He also participated in the Green Team of Locked Shields, a NATO cyber defense exercise, contributing to the design and execution of realistic scenarios.
He is the founder of Pwned Labs, providing gamified and immersive cloud security labs for red and blue teams - https://pwnedlabs.io
Get to know your trainer
Ian Austin is a security researcher and educator with a career spanning over 20 years in technical, security and leadership roles for global enterprises.
Ian was Head of Content at Hack The Box, a leading online platform for cybersecurity training and assessment. He also participated in the Green Team of Locked Shields, a NATO cyber defense exercise, contributing to the design and execution of realistic scenarios.
He is the founder of Pwned Labs, providing gamified and immersive cloud security labs for red and blue teams - https://pwnedlabs.io
Sessions schedule (December 2024 Batch)
This live bootcamp is delivered quarterly. The December batch of the Amazon Cloud Attack and Defense Bootcamp runs for 4 weeks, starting December 7th through to December 28th. The 4-hour, instructor-led live classes will take place using Zoom, and in private chat channels available in the Pwned Labs Discord. You'll receive an email after purchase with all the information you need to participate, including a breakdown of each session.
Can't make a session? We've got you! A Zoom recording will be available to watch and catch up a couple of hours after the end of each session.
- Live session 1: Saturday, December 7 @ 5pm-9pm UTC
- Live session 2: Saturday, December 14 @ 5pm-9pm UTC
- Live session 3: Saturday, December 21 @ 5pm-9pm UTC
- Live session 4: Saturday, December 28 @ 5pm-9pm UTC