AWS secures the physical data centers and hypervisors, but customers own the identity, configuration, encryption, and monitoring layers. Mastering this shared‑responsibility model means designing least privilege on day one, isolating workloads by account, and wiring continuous detection so every drift or rogue API call is caught, before it becomes tomorrow’s headline. Bottom line… most of AWS Security is up to YOU!
The goal for this Free Upskill Challenge by Carlos Polop of HackTricks is to:
- Inspire you to learn even more far beyond the 20 – 30 minutes of this UC.
- Give you an introduction to the basics and best-practices for securing your AWS environment.
- Show you some actions you can take immediately to reduce your attack surface.
Price = FREE!
What’s an Upskill Challenge (UC)?
A UC is a CTF-style, bite-sized lesson from the JHT Team, our courseware developers as well as “friends” of JHT. They are meant to be short and to the point. UCs focus on a single tool or concept and are helpful in quickly providing useful skills that might be prerequisites for other types of educational content on the platform.
A UC should be 10 – 30 minutes of student time and have no VMs. There are quizzes to make sure that the content is understood.
Prerequisites for “UC – AWS Security”
UCs assume no knowledge at all! They’re meant to be completely self-contained, so all of the answers are in the lesson. No outside research is required.
