Pentesting AWS Practitioner

Intermediate Course-end practical/theory assessment (provider format) Pass: Provider-defined threshold; check portal for curr… $249

PAWSP provides practitioner-oriented AWS pentesting foundations and applied cloud attack-path methodology. For 2026, focus on IAM escalation paths, metadata abuse controls, and practical validation discipline.

Official Page

IssuerAltered Security

FormatCourse-end practical/theory assessment (provider format)

DurationSelf-paced with timed assessments as defined by provider

Pass ScoreProvider-defined threshold; check portal for curr…

Overview Syllabus (5) Tools (6) Cheat Sheets (2) Labs (3)

Recommended Tools

ROADtools Essential

AAD

Azure AD enumeration and token research toolkit.

installpipx install roadrecon

usageroadrecon gather

Pacu Essential

AWS

AWS exploitation framework for IAM/data-plane testing.

installpipx install pacu

usagepacu

ScoutSuite

AWS

Multi-cloud security posture baseline and misconfiguration review.

installpipx install scoutsuite

usagescout aws

Azure CLI Essential

Azure

Tenant/resource enumeration and token-context validation.

installcurl -sL https://aka.ms/InstallAzureCLIDeb | sudo bash

usageaz account show

Rubeus/Mimikatz toolkit awareness

C2/AD

Understand credential material handling and AD abuse paths in controlled labs.

usageUse in sanctioned lab scope only

Trivy

Containers

Container/image/config scanning for cloud attack surface.

installsudo apt install -y trivy

usagetrivy image <image>

kube-hunter

K8s/Cloud

Kubernetes exposure checks in cloud estates.

installpipx install kube-hunter

usagekube-hunter --remote <ip>