.png)
Module19 Cloud Computing
Module 19: Cloud Computing
Learn different cloud computing concepts, such as container technologies
and server less computing, various cloud-based threats and attacks, and
cloud security techniques and tools. Hands-On Lab Exercises: Ov er 5
hands-on exercises with real-life simulated targets to build sk ills on how to:
> Perform S3 Bucket enumeration using various S3 bucket enumeration tools
> Exploit open S3 buckets
> Escalate IAM user privileges by exploiting misconfigured user policy
Key topics covered:
> Cloud Computing
> Types of Cloud Computing Services
> Cloud Deployment Models
> Fog and Edge Computing
> Cloud Service Providers
> Container
> Docker
> Kubernetes
> Serverless Computing
> OWASP Top 10 Cloud Security Risks
> Container and Kubernetes Vulnerabilities
> Cloud Attacks
> Cloud Hacking
> Cloud Network Security
> Cloud Security Controls
Section 01: Cloud Computing Concepts
Cloud computing
Cloud computing is the on-demand availability of computer system resources, especially data storage (cloud storage) and computing power, without direct active management by the user. Large clouds often have functions distributed over multiple locations, each of which is a data center.
Fog computing
Fog computing or fog networking, also known as fogging, is an architecture that uses edge devices to carry out a substantial amount of computation (edge computing), storage, and communication locally and routed over the Internet backbone.
Edge computing
Edge computing is a distributed computing paradigm that brings computation and data storage closer to the sources of data. This is expected to improve response times and save bandwidth.
Amazon web services (AWS)
Amazon Web Services, Inc. is a subsidiary of Amazon that provides on-demand cloud computing platforms and APIs to individuals, companies, and governments, on a metered pay-as-you-go basis.
Microsoft azure
Microsoft Azure, often referred to as Azure, is a cloud computing platform operated by Microsoft for application management via Microsoft-managed data centers.
Google cloud platform (GCP)
Google Cloud Platform, offered by Google, is a suite of cloud computing services that runs on the same infrastructure that Google uses internally for its end-user products, such as Google Search, Gmail, Google Drive, and YouTube.
Section 02: Container Technology
Containerization
Containerization is operating system-level virtualization or application-level virtualization over multiple network resources so that software applications can run in isolated user spaces called containers in any cloud or non-cloud environment, regardless of type or vendor.
Docker
Docker is a set of platform as a service products that use OS-level virtualization to deliver software in packages called containers.
Kubernetes
Kubernetes is an open-source container orchestration system for automating software deployment, scaling, and management.
Virtual machine (VM)
In computing, a virtual machine (VM) is the virtualization/emulation of a computer system. Virtual machines are based on computer architectures and provide functionality of a physical computer.
Section 03: Serverless Computing
Serverless
Serverless computing is a cloud computing execution model in which the cloud provider allocates machine resources on demand, taking care of the servers on behalf of their customers. "Serverless" is a misnomer in the sense that servers are still used by cloud service providers to execute code for developers.
Azure function
Azure Functions is a serverless solution that allows you to write less code, maintain less infrastructure, and save on costs.
0 Comments: