Nullcon Sep Online Training 2021

Trainer Name: Jayesh Singh Chauhan , Divyanshu Shukla

Title: Auditing and Securing the Cloud

Duration: 4 Days

Dates: Sept. 23, 2021 To Sept. 26, 2021

Time: 10 a.m. To 2 p.m.


Course Content

Day1

AWS

  • Introduction to AWS and its services
  • Securing IAM
  • Role vs Policy
  • Secret Management - KMS and Vault
  • Auditing cloud - All resources - Cloud Security Suite, Prowler and ScoutSuite
  • AWS Trusted Advisor
  • AWS Guard Duty, AWS Inspector
  • AWS WAF shield
  • WAF testing

Day2:

AWS

  • Network Monitoring with ELK - CloudWatch, VPCflowlogs, CloudTrail
  • Setting up a SIEM
  • Subdomain takeover detection
  • AWS security HUB
  • SSRF Metadata attack
  • AWS Lambda Security
  • Common AWS attack scenarios

Day 3:

Azure

  • Introduction to Azure and its services
  • Group and Roles - Threat Modelling
  • Secret Management
  • Azure Vault - Azure Security Centre with Azure Defender for VM security
  • Audit - Cloud Security Suite, Azucar
  • Network Monitoring
  • Azure Advanced Threat Protection
  • Azure WAF
  • Azure attack scenarios

Day 4:

Infra Security

  • Hardening OS
  • CI/CD enforce security
  • Docker Security
  • Kubernetes Security
  • GitLeaks and git-secrets
  • Cloud CTF

Prerequisites:

  • Active AWS and Azure accounts
  • Familiarity with ssh, git, and Linux basics
  • Basics of VirtualBox

Who should attend?

  • Security Analysts
  • System Administrators
  • Pentesters
  • Cloud Engineers
  • DevOps Engineers
  • OR anyone who is interested in securing AWS and Azure

What to expect:

  • In-depth understanding of key AWS/Azure services
  • Auditing of Cloud Infrastructure
  • Hardening of Cloud Infrastructure with a multi-layered approach
  • Continuous monitoring capabilities of security posture in AWS and Azure

What to bring:

  • A laptop with administrative privileges
  • Unfiltered Internet Access
  • Minimum 4GB RAM and 50 GB free hard disk space
  • VirtualBox installed on the laptop

About the Trainer

Jayesh Singh Chauhan is a security professional with 10 years of experience in the security space. He is the founder of Cloud Village at DEF CON.

In the past, he has been part of the security teams of PayPal, PwC and currently works as the Director of Product Security at Sprinklr. He has authored Cloud Security Suite, OWASP Skanda, RFID_Cloner, CSRF PoC generator, and has presented his work in BlackHat Arsenal(USA, EU Asia), DEF CON DemoLabs, OffZone, HackMiami, c0c0n, OWASP Global, and OffZone Moscow. 

Divyanshu Shukla is a certified information security engineer with 5 years of experience in web application pentesting, mobile pen-testing, and cloud security. He has received multiple halls of fame and CVEs for reporting vulnerabilities from Apple, Samsung, AWS, Amazon, Xiaomi, Opera, etc, and also given training and seminars in events like Parsec IIT Dharwad, GirlScript Chandigarh University, and Null community.