Skip to content

Google Cloud Attack and Defense Bootcamp

Get hands-on experience with attacking and defending GCP and Google Workspace account in a live 4-week-long instructor-led bootcamp. Attempt the Google Cloud Red Team Professional (GCRTP) certification and prove your skills.


Already enrolled? Access here

Google Cloud Attack and Defense Bootcamp Overview

Certs-group-2

Google Cloud is everywhere!

This comprehensive 4-week bootcamp and its structured learning path provide students with foundational concepts, essential security tools and techniques, and instruction in attacking and defending GCP and Google Workspace environments.

Upon successfully completing the Google Cloud Attack and Defense bootcamp and its associated learning path, you'll be prepared to demonstrate your skills in the exam lab. This fully hands-on, unproctored exam challenges you to apply your newfound expertise to complete an exploitation chain and get the flag.

The exam environment is dynamic, with the flag and scenario changing periodically to ensure the credibility of the Google Cloud Red Team Professional (GCRTP) certification when applying for Google Cloud security roles

The GCRTP bootcamp is also suitable for an on-demand approach.

google_cloud2

Prerequisites and key learning outcomes

You should know your way around the Windows or Linux command line! Familiarity with Google Cloud Platform (GCP) is helpful but not required.

Students who successfully complete the 4-week bootcamp and structured learning path, and subsequently pass the exam to earn the Google Cloud Red Team Professional (GCRTP) certification, have demonstrated proficiency in the following areas:

  • Understand key Google Workspace and GCP concepts
  • Perform GCP audits and remediate vulnerabilities
  • Leverage GCP resources to gain initial access and move laterally
  • Use modern phishing techniques for initial access
  • Increase resource access through Google Workspace
  • Hands-on purple teaming simulating real-world attacks and defenses
  • Attack and defend App Engine and VM instances
  • Exploit misconfigured IAM resources to increase access
  • Expand access through DevOps platforms and CI/CD
  • Investigate security incidents using Cloud Logging
  • Detect threats using Google Security Command Center
google_cloud_pathway-1-1

GCP & Google Workspace security learning path

In addition to the live, instructor-led bootcamp, students get access to fully structured learning paths covering penetration testing in GCP and Google Workspace. You get access to all premium GCP and Google Workspace security labs.

If you aspire to become a penetration tester, red team operator or cloud security professional focused on GCP and Google Workspace, this learning path has been created for you!

  • Lifetime access to the bootcamp recordings and custom content, and 45 days lab access. Lab access can be extended for $20 per month with a Pwned Labs Pro subscription.
  • Complete the bootcamp and learning path to prepare for the Google Cloud Red Team Professional (GCRTP) certification. More information on the bootcamp, learning path and GCRTP exam can be found on the FAQs page.
tatradecraft-1

Focus on trending techniques and tradecraft

The Google Cloud Attack and Defense bootcamp showcases trending techniques and tradecraft used by real threat actors, including TRIPLESTRENGTH. The realistic labs simulate actual company environments and active users across GCP and Google Workspace, that you are likely to come across during engagements or in your own organization.

  • Identify, replicate and detect tradecraft from recent cloud breaches
  • Explore different ways to perform tasks and stay tool-agnostic
  • Learn how to evict threats and rotate/reset various forms of credentials
speaker2-3

Get to know your trainer

Ian Austin is a security researcher and educator with a career spanning over 20 years in technical, security and leadership roles for global enterprises.

Ian was Head of Content at Hack The Box, a leading online platform for cybersecurity training and assessment. He also participated in the Green Team of Locked Shields, a NATO cyber defense exercise, contributing to the design and execution of realistic scenarios.

He is the founder of Pwned Labs, providing gamified and immersive cloud security labs for red and blue teams - https://pwnedlabs.io

image 52 (1)

Sessions schedule (July 2025 Batch)

This live bootcamp is delivered quarterly. The July batch of the Google Cloud Attack and Defense Bootcamp runs for 4 weeks, starting July 5th through to July 26th. The 4-hour, instructor-led live classes will take place using Zoom, and in private chat channels available in the Pwned Labs Discord. You'll receive an email after purchase with all the information you need to participate, including a breakdown of each session.

Can't make a session? We've got you! The Zoom recording will be available to watch and catch up a couple of hours after the end of each session.

  • Live session 1: Saturday, July 5 @ 5pm-9pm UTC
  • Live session 2: Saturday, July 12 @ 5pm-9pm UTC
  • Live session 3: Saturday, July 19 @ 5pm-9pm UTC
  • Live session 4: Saturday, July 26 @ 5pm-9pm UTC
 


Purchase options


Each bootcamp purchase includes two attempts for the GCRTP exam. Additional GCRTP exam re-attempts can also be bought individually. Please note that a bootcamp purchase is required to be able to attempt the exam.

Select an option to securely checkout.


If you're interested in a bulk purchase, please let us know your requirements using the form below.



line
bootcamp-4
exam_reattempt
 

Contact Us