Cloud Security — CYBY

FC-08

AWS, Azure and GCP security from fundamentals to attacks. IAM Privilege Escalation with Pacu, Cloud Misconfigurations, Container and Kubernetes Security, IaC auditing with Checkov and tfsec. Requires FC-03 and FC-04.

45 lessons9 modulesIntermediate3 themes

Start Learning ← All Courses

AWS Kill Chain:

SSRF

IAM privesc

Data exfil

Why Cloud Security is the hottest specialization

Numbers that explain everything

93%of cloud incidents caused by IAM and S3 misconfiguration

$4.1Maverage cost of a cloud infrastructure data breach in 2024

$125K+annual salary for Cloud Security Engineer / Architect in the US

3 out of 4companies have publicly accessible S3 buckets with sensitive data

After the course you will be able to

Hands-on practice in real AWS environments with actual vulnerabilities, not theory

☁️Audit an AWS account with Prowler and ScoutSuite — find all misconfigurations against CIS Benchmarks

🔐Exploit IAM Privilege Escalation in AWS via Pacu — 21+ techniques from low-priv to admin in 47 minutes

🪣Discover open S3 Buckets through enumeration and Google Dorking, perform a data exfiltration attack

🐳Attack Docker and Kubernetes: container escape, RBAC privesc, cluster compromise via exposed API

🔷Perform attacks on Azure AD / Entra ID: RBAC abuse, Managed Identities, Conditional Access bypass

🏗️Audit Terraform and IaC for security risks with Checkov and tfsec, implement Policy as Code with OPA

🔍Set up Cloud monitoring: CloudTrail, GuardDuty, Azure Defender, GCP Security Command Center

🕵️Investigate a Cloud incident: log forensics, Athena SQL queries, automated response via Lambda

Real breaches in the course

We analyze major Cloud incidents and reproduce their techniques in lab environments

AWS case2019

Capital One 2019 — 106M customers via SSRF + IAM

A former Amazon employee exploited an SSRF vulnerability in a WAF to access the EC2 Instance Metadata Service and stole IAM role credentials. Then downloaded data of 106 million customers from S3. Fine — $80 million.

Module 04 · Cloud Misconfigurations

S3 case2023

Toyota 2023 — 296K customers, S3 open for 8 years

Toyota discovered that a cloud environment with data of 296,000 customers had been publicly accessible from 2015 to 2023 — 8 years unnoticed. Cause: missing S3 Block Public Access and monitoring.

Module 02 · AWS Security

Azure case2021

Microsoft Power Apps 2021 — 38 TB of internal data

A misconfiguration in Power Apps table settings exposed public access to 38 TB of sensitive data: employee contacts, email addresses, contract data. 47 organizations affected, including Ford and American Airlines.

Module 03 · Azure Security

Course Program

9 modules · 45 lessons · 3 themes: Cloud Security Fundamentals, Cloud Attacks, Defense & Monitoring

Where this course leads

FC-08 — entry into the fastest-growing cybersecurity niche with $120K+ salaries

$8,000 — $22,000/mo

Cloud Security Architect

Design secure cloud infrastructure for enterprise clients. The highest-paying role in Cloud Security.

AWS/Azure/GCPIAMZero-TrustArchitecture

Track:FC-08 → MC-06 → Cloud Architect

$5,000 — $14,000/mo

Cloud Penetration Tester

Conduct pentests of client cloud infrastructure. Huge demand, acute shortage of specialists with real experience.

PacuScoutSuiteProwlerCloud kill chain

Track:FC-03 → FC-04 → FC-08 → Cloud Pentester

$4,000 — $12,000/mo

DevSecOps Engineer

Embed security into CI/CD pipelines. Work at the intersection of development, DevOps and cybersecurity.

TerraformCI/CDSAST/DASTKubernetes

Track:FC-08 → DevSecOps → Staff Engineer

Who this course is for

⚔️

Pentesters and Red Team

Completed FC-03 and FC-04, want to master the cloud attack vector — the most relevant vector with 99% of incidents on the client side. Real arsenal: Pacu, ScoutSuite, Kube-Hunter

☁️

DevOps and Cloud engineers

Work with AWS, Azure or GCP and want to understand how your infrastructure looks through an attacker's eyes. Learn to read CloudTrail, configure GuardDuty and perform IaC audits

🏗️

Architects and developers

Build cloud systems and want to embed security from day one: IAM Least Privilege, Terraform security, Policy as Code and monitoring through Security Hub

Become a
Cloud Security
expert with real experience

45 lessons on AWS, Azure and GCP: from Shared Responsibility Model to Cloud Forensics. Pacu, Checkov, Kube-Hunter and real vulnerable cloud environments.

Start Learning ← All Courses

FC-08 — Cloud Security

Cloud Security

Lessons45

Hours45

LevelIntermediate

Themes3

Real AWS/Azure/GCP environments

Tools: Pacu, Prowler, ScoutSuite

3 real cloud incidents

Cloud Security career track