Hi,

I'm a Cloud Red Team Analyst.

The project is geared towards conducting a thorough and exhaustive security evaluation of your AWS cloud infrastructure. This assessment will encompass a wide array of criteria, spanning user, network, and application security, among others, ensuring a comprehensive examination of your AWS environment's security posture.

Configuration Review:

We evaluate the configurations of your AWS services and the IAM policies applied to those services. Misconfigurations can lead to significant security gaps in AWS environments.

External AWS Pentesting:

External AWS vulnerability scanning tools and manual security testing probe your AWS infrastructure to uncover security issues in public-facing services. This includes web and network-related security.

Assumed Breach Pentest:

The final and detailed penetration test simulates an attacker who has gained initial access to an AWS account. This could happen if keys were mistakenly shared on GitHub, or a server hosted on AWS was hacked, and api keys were stolen. The goal of this assessment is to mimic how an attacker might try to increase their access levels to obtain sensitive information from the account.