Computers-Internet Programming

Hands-On AWS Penetration Testing with Kali Linux EPUB PDF

10 months ago
295 Views
Hands-On AWS Penetration Testing with Kali Linux EPUB PDF
E-Book Description
Hands-On AWS Penetration Testing with Kali Linux EPUB PDF Free Download

Identify tools and techniques to secure and perform a penetration test on an AWS infrastructure using Kali Linux

Key Features
Efficiently perform penetration testing techniques on your public cloud instances
Learn not only to cover loopholes but also to automate security monitoring and alerting within your cloud-based deployment pipelines
A step-by-step guide that will help you leverage the most widely used security platform to secure your AWS Cloud environment
Book Description
The cloud is taking over the IT industry. Any organization housing a large amount of data or a large infrastructure has started moving cloud-ward ― and AWS rules the roost when it comes to cloud service providers, with its closest competitor having less than half of its market share. This highlights the importance of security on the cloud, especially on AWS. While a lot has been said (and written) about how cloud environments can be secured, performing external security assessments in the form of pentests on AWS is still seen as a dark art.

This book aims to help pentesters as well as seasoned system administrators with a hands-on approach to pentesting the various cloud services provided by Amazon through AWS using Kali Linux. To make things easier for novice pentesters, the book focuses on building a practice lab and refining penetration testing with Kali Linux on the cloud. This is helpful not only for beginners but also for pentesters who want to set up a pentesting environment in their private cloud, using Kali Linux to perform a white-box assessment of their own cloud resources. Besides this, there is a lot of in-depth coverage of the large variety of AWS services that are often overlooked during a pentest ― from serverless infrastructure to automated deployment pipelines.

By the end of this book, you will be able to identify possible vulnerable areas efficiently and secure your AWS cloud environment.

What you will learn
Familiarize yourself with and pentest the most common external-facing AWS services
Audit your own infrastructure and identify flaws, weaknesses, and loopholes
Demonstrate the process of lateral and vertical movement through a partially compromised AWS account
Maintain stealth and persistence within a compromised AWS account
Master a hands-on approach to pentesting
Discover a number of automated tools to ease the process of continuously assessing and improving the security stance of an AWS infrastructure
Who this book is for
If you are a security analyst or a penetration tester and are interested in exploiting Cloud environments to reveal vulnerable areas and secure them, then this book is for you.

A basic understanding of penetration testing, cloud computing, and its security concepts is mandatory.

E-Book Details
Сategories: Computers-Internet|Programming
Language ‏ : ‎ English
Paperback ‏ : ‎ 508 pages
Table of Contents
Setting Up a Pentesting Lab on AWS
Setting Up a Kali PentestBox on the Cloud
Exploitation on the Cloud using Kali Linux
Setting Up Your First EC2 Instances
Penetration Testing of EC2 Instances using Kali Linux
Elastic Block Stores and Snapshots – Retrieving Deleted Data
Reconnaissance – Identifying Vulnerable S3 Buckets
Exploiting Permissive S3 Buckets for Fun and Profit
Identity Access Management on AWS
Privilege Escalation of AWS Accounts Using Stolen Keys, Boto3, and Pacu
Using Boto3 and Pacu to Maintain AWS Persistence
Security and Pentesting of AWS Lambda
Pentesting and Securing AWS RDS
Targeting Other Services
Pentesting CloudTrail
GuardDuty
Using Scout Suite for AWS Security Auditing
Using Pacu for AWS Pentesting
Putting it All Together – Real – World AWS Pentesting
Hands-On AWS Penetration Testing with Kali Linux EPUB PDF Ebook
Show more
Show less
About the Authors
Karl Gilbert is a security researcher who has contributed to the security of some widely used open-source software. His primary interests relate to vulnerability research, 0-days, cloud security, secure DevOps, and CI/CD.

Mr. Benjamin Caudill is an adept penetration tester, security researcher, and entrepreneur. A veteran of the defense and finance industries, Mr. Caudill led red teams across a wide range of environments and technologies, uncovering vulnerabilities in key applications and cloud environments. As a security researcher, Mr. Caudill has lead dozens of development and exploitation projects, furthering the state of offensive research in the industry. His many publications and tools have been featured on CNN, Wired, Washington Post, and other major outlets.
As the founder of Rhino Security Labs, Mr. Caudill has built the boutique security firm and turned it into a major player in the penetration testing market. In addition to his executive role, Mr. Caudill oversees company research and development, ensuring the continued development of key offensive technologies.

Show more
Show less
Download Links
Hands-On AWS Penetration Testing with Kali Linux EPUB PDF Free
PDF       EPUB

You may also like