Share
## https://sploitus.com/exploit?id=6149CF23-B774-5D14-9C99-482AA23E6B6D
# Cloud-Security-Portfolio
Offensive AWS security portfolio — IAM privilege escalation, S3 misconfig exploitation, and cloud attack path documentation from hands-on labs (flAWS, CloudGoat, AWSGoat, Pacu). Built while training for junior cloud security engineer roles.


## What's here
- **Write-ups**: Step-by-step exploitation of intentionally vulnerable AWS environments 
  (flAWS.cloud, CloudGoat, AWSGoat) — attack narrative, commands used, root cause, 
  and remediation for each.
- **Tooling**: Python/boto3 scripts built to automate parts of AWS misconfiguration 
  detection (public S3 buckets, overly permissive IAM policies, unencrypted EBS/RDS, 
  open security groups, missing MFA).
- **Methodology**: Every scenario is broken down using the AWS Shared Responsibility 
  Model — what AWS secures vs. what the customer configured wrong — because that's 
  the root cause of nearly every real cloud breach.

## Why this exists
Cloud environments fail because of customer-side misconfiguration, not AWS 
infrastructure breaches. This repo is a working record of finding, exploiting, and 
documenting those failure patterns — the same skill set required for cloud security 
engineering and cloud penetration testing roles.

## Status
Actively updated as part of a structured 4-month self-directed cloud security 
roadmap (June–October 2026).