Skip to content
/ Flaws.Cloud Public

Welcome to the "Flaws in Cloud Challenge" walkthrough, where we will explore common mistakes and pitfalls when utilizing Amazon Web Services (AWS).

goodycyb.hashnode.dev/flaws-cloud-challenges
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

goodycy3/Flaws.Cloud

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

2 Commits
README.md
README.md
Β 
Β 

Repository files navigation

Flaws.Cloud

Welcome to the "Flaws in Cloud Challenge" walkthrough, where we will explore common mistakes and pitfalls when utilizing Amazon Web Services (AWS). Unlike traditional vulnerabilities such as SQL injection, XSS, or buffer overflows, this challenge focuses primarily on AWS-specific issues. By examining these flaws, we can gain valuable knowledge about securing AWS environments effectively. Let's dive into the detailed walkthrough to understand and mitigate these vulnerabilities.

Thanks to Scott Piper (@0xdabbad00, summitroute.com) for building an amazing platform.

πŸ’‘ Check here for complete walkthrough πŸ‘ˆ

πŸš€ Level 1: Enumerating Flaws.cloud Domain (AWS)
πŸš€ Level 2: Insecure S3 Buckets (AWS)
πŸš€ Level 3: S3 Leaked Access Key Secret
πŸš€ Level 4: Exploiting Unencrypted EBS volume Snapshots
πŸš€ Level 5: Exploiting Exposed Meta-Data
πŸš€ Level 6: Auditing misconfigured IAM Account

Screenshots



REFERENCE

🚩 YouTube video by Day Cyberwox
🚩 Writeup by Will M.

About

Welcome to the "Flaws in Cloud Challenge" walkthrough, where we will explore common mistakes and pitfalls when utilizing Amazon Web Services (AWS).

goodycyb.hashnode.dev/flaws-cloud-challenges

Topics

aws aws-s3 cloudsecurity

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published