1
Q
Cloud Vulnerability Scanners
A
trivy clair dagda twistlock sysdig
2
Q
Define S3
A
AWS Simple Storage Service
3
Q
S3 Enumeration
A
Check source code
Scanners (bucketkicker, S3Scanner, S3Inspector)
4
Q
AWS Enumerations
A
Account IDs Social Media Posting Roles Keys/Credentials Password Reuse Hosted Vulnerable Apps IM Role Misconfigurations
5
Q
AWS Pentesting Tools
A
PACU
CloudGoat 2
AWS_pwn
6
Q
AWS IAM Privilege Escalation Techniques
A
Create EC2 Instance with Existing Profile
Custom Permissions
Add yourself to new group
CEH v11
flashcards
Decks in class (55)
# Cards
-
Hacking Methodology8
-
Windows Authentication6
-
CEH v11 EC-Council Certification Overview2
-
Basic Cybersecurity Concepts6
-
Attacker Motives, Goals, and Objectives1
-
Attack Classifications7
-
Information Warfare11
-
Network Sniffing Basics13
-
DHCP Sniffing Attacks3
-
ARP Poisoning5
-
DNS Poisoning3
-
Sniffing Defenses3
-
Steganography Tools and Techniques4
-
Covering Your Tracks4
-
Wireless Hacking4
-
Wireless Hacking Countermeasures3
-
Nmap TCP Connect Scan5
-
Nmap Stealth Scan4
-
Nmap Inverse TCP Scan8
-
Nmap ACK Scan8
-
Hacking Phases & Concepts3
-
Ethical Hacking Concepts4
-
SQL Injection & SQLMap1
-
SQL Injection Testing with SQLMap4
-
Session Hijacking Concepts4
-
Network Level Session Hijacking5
-
Application Level Session Hijacking10
-
Session Hijacking Countermeasures6
-
Geolocation Recon2
-
Social Networking Recon2
-
Job Board Recon1
-
Deep and Dark Webs Recon5
-
Cloud Computing Concepts19
-
Container Concepts6
-
Hacking Cloud Services6
-
Cloud Security Controls5
-
Nmap IDLE/IPID Scan5
-
Nmap UDP Scan4
-
Nmap SCTP scan4
-
Nmap IPv6 List and Version Scans2
-
Vulnerability Assessment Concepts and Resources7
-
Vulnerability Management Life Cycle4
-
Vulnerability Classification1
-
Password Attack Basics7
-
Password Extraction and Cracking5
-
Password Cracking Enhancement Techniques4
-
Malware Concepts and Components3
-
Advanced Persistent Threats3
-
Trojans4
-
Viruses and Worms5
-
Web Application Attacks & Vulnerabilities10
-
OWASP Top 10 Web Application Attacks 20172
-
Cryptography Concepts5
-
Crypto Algorithms and Implementations8
-
Cryptography Tools1
