Offensive Security Cloud Pentester

Advanced Practical cloud pentest-style exam + report Pass: Objective/report-based; verify current OffSec gui… $1,499

OCLP focuses on cloud attack-path identification and exploitation across identity, misconfiguration, and service abuse scenarios. For 2026, prioritize IAM abuse paths, hybrid identity risk, and evidence-rich reporting.

Official Page

IssuerOffSec

FormatPractical cloud pentest-style exam + report

DurationProvider-defined practical window (commonly multi-day)

Pass ScoreObjective/report-based; verify current OffSec gui…

Valid For3y

Overview Syllabus (5) Tools (6) Cheat Sheets (2) Labs (3)

Recommended Tools

ROADtools Essential

AAD

Azure AD enumeration and token research toolkit.

installpipx install roadrecon

usageroadrecon gather

Pacu Essential

AWS

AWS exploitation framework for IAM/data-plane testing.

installpipx install pacu

usagepacu

ScoutSuite

AWS

Multi-cloud security posture baseline and misconfiguration review.

installpipx install scoutsuite

usagescout aws

Azure CLI Essential

Azure

Tenant/resource enumeration and token-context validation.

installcurl -sL https://aka.ms/InstallAzureCLIDeb | sudo bash

usageaz account show

CherryTree/Obsidian Essential

Workflow

Structured notes for report-grade evidence capture.

usageUse for methodology + proof tracking

Trivy

Containers

Container/image/config scanning for cloud attack surface.

installsudo apt install -y trivy

usagetrivy image <image>

kube-hunter

K8s/Cloud

Kubernetes exposure checks in cloud estates.

installpipx install kube-hunter

usagekube-hunter --remote <ip>