Evergreen Alliance Training Program for GIAC Cloud Penetration Tester (GCPN)

You will learn to:

AWS Authentication and Cloud Services
Candidates will showcase expertise in AWS authentication methods, including Identity and Access Management (IAM) structures, policies, and identities. This includes understanding privilege escalation scenarios within AWS environments. Additionally, candidates must demonstrate proficiency in Amazon Key Management Service (KMS), AWS Lambda functions, and the use of exploitation tools for AWS platforms.

Azure Functions and Windows Containers
Candidates will exhibit knowledge of Azure Functions, their capabilities, and the distinctions between Azure Functions and AWS Lambda. This includes code execution within the Azure environment, leveraging Windows Containers, and using tools like Microsoft Graph.

Cloud CLI and Application Mapping
Candidates will demonstrate familiarity with AWS and Azure CLI structures, as well as the ability to map applications through APIs and HTTP requests.

Cloud-Native Applications and CI/CD Pipelines
Candidates will provide examples of cloud-native applications and CI/CD pipelines, highlighting their structure, functionality, and vulnerabilities. This includes identifying security flaws within these systems.

Cloud Penetration Testing Fundamentals
Candidates will demonstrate foundational knowledge of penetration testing as applied to cloud environments. This includes recon, assessment, discovery, and navigating restrictions in public cloud infrastructures. Understanding the architecture and configurations of these infrastructures is also required.

Containers and Kubernetes Structure
Candidates will display proficiency in application deployment using containers, alongside knowledge of Kubernetes structures, configurations, and service meshes.

Discovering Cloud Services and Data Exposure
Candidates will identify sources of exposure within cloud environments, such as open ports, misconfigured services, exposed databases, secrets, and vulnerable developer tools or repositories.

Microsoft Azure Cloud Services and Attack Techniques
Candidates will demonstrate knowledge of Microsoft Azure services, including web identity management, authentication standards, and common attacks targeting Azure users and services.

Password Attacks in Cloud Environments
Candidates will understand and apply methodologies for username harvesting and password attack techniques, using relevant tools in cloud environments.

Red Team Penetration Testing in Cloud Environments
Candidates will demonstrate expertise in Red Team penetration testing processes, including exploitation techniques, payload development, and the tools used in these activities.

Redirection and Attack Obfuscation
Candidates will understand techniques for command obfuscation, domain fronting, pivoting, and attack structure concealment through proxies and other tools.

Web Application Attacks in Cloud Contexts
Candidates will demonstrate proficiency in identifying and exploiting common web application vulnerabilities, with a focus on their impact on cloud-native applications and serverless functions.