01
Cloud security
One misconfigured permission away from losing your entire cloud environment.
Cloud infrastructure misconfigurations are the leading cause of large-scale breaches, and most are invisible until it is too late. This assessment maps every path from a small initial foothold to full control of your AWS or GCP environment.
What I test
- →Permission misconfiguration: can a user or service with limited access escalate to administrator?
- →Credential theft via web vulnerabilities: can a server-side request flaw be used to steal cloud access keys?
- →Storage exposure: are any S3 buckets or GCS buckets publicly readable or writable?
- →Serverless function security: can Lambda or Cloud Functions be abused to access other resources?
- →Secrets management: are passwords and API keys stored in environment variables, logs, or source code?
- →Network segmentation: are internal services unnecessarily exposed to the internet?
- →Audit logging gaps: would an attacker's actions go undetected in your logs?
- →Cross-account trust: can access from one environment be used to pivot into another?
AWSGCPPermission escalationCredential theftStorage exposure
Example findings
CRITICALWeb app vulnerability used to steal cloud credentials. Full environment access gained.
CRITICALFile storage bucket writable by anyone on the internet. No login required.
HIGHServerless function can grant itself full administrator permissions.
HIGHCloud credentials committed to a public repository. Keys still valid and active.
Illustrative examples, not exhaustive.
Deliverable
Request this assessment →Attack path diagram plus findings report. Each path traced end-to-end with an assessment of what an attacker could reach.