IT Professional Certifications     CompTIA     CompTIA PenTest+     CompTIA PenTest+ (PT0-002)

---

Penetration testers need to account for all types of systems available in an environment. In addition to servers and network appliances, this can also include cloud-based systems. In this course, you'll learn how to research attack vectors and perform attacks on cloud technologies. You'll explore common cloud-based attacks, such as credential harvesting, privilege escalation, and account takeovers. You'll learn how to identify misconfigured cloud assets, including identity and access management and containerization technologies. You'll move on to explore how cloud malware injection, denial of service, and side-channel attacks can exploit a system. Lastly, you'll learn about common cloud tools such as the software development kit. This course is one of a collection that helps prepare learners for the CompTIA PenTest+ (PT0-002) certification exam.

---

---

Objectives

CompTIA PenTest+ (PT0-002): Attacks on Cloud Technologies discover the key concepts covered in this course describe how credential harvesting can be used to amass a large number of credentials describe how privilege escalation works recognize the characteristics of an account takeover (ATO) attack provide an overview of metadata service attacks describe how misconfigurations can lead to cloud-based data breaches recognize how to mitigate the risks of cloud resource exhaustion outages provide an overview of cloud malware injection attacks list characteristics of a denial of service attack recognize the signs of a side-channel attack recognize signs of a direct-to-origin cyber attack describe how software development kit (SDK) can be used as a tool in cloud-based attacks summarize the key concepts covered in this course