How to Hack Like a Ghost: Breaching the Cloud

  • 3h 51m
  • Sparc Flow
  • No Starch Press
  • 2021

Go deep into the mind of a master hacker as he breaks into a hostile, cloud-based security environment. Sparc Flow invites you to shadow him every step of the way, from recon to infiltration, as you hack a shady, data-driven political consulting firm. While the target is fictional, the corporation’s vulnerabilities are based on real-life weaknesses in today’s advanced cybersecurity defense systems. You’ll experience all the thrills, frustrations, dead-ends, and eureka moments of his mission first-hand, while picking up practical, cutting-edge techniques for penetrating cloud technologies.

There are no do-overs for hackers, so your training starts with basic OpSec procedures, using an ephemeral OS, Tor, bouncing servers, and detailed code to build an anonymous, replaceable hacking infrastructure guaranteed to avoid detection. From there, you’ll examine some effective recon techniques, develop tools from scratch, and deconstruct low-level features in common systems to gain access to the target. Spark Flow’s clever insights, witty reasoning, and stealth maneuvers teach you how to think on your toes and adapt his skills to your own hacking tasks.

You'll learn:

  • How to set up and use an array of disposable machines that can renew in a matter of seconds to change your internet footprint
  • How to do effective recon, like harvesting hidden domains and taking advantage of DevOps automation systems to trawl for credentials
  • How to look inside and gain access to AWS’s storage systems
  • How cloud security systems like Kubernetes work, and how to hack them
  • Dynamic techniques for escalating privileges

Packed with interesting tricks, ingenious tips, and links to external resources, this fast-paced, hands-on guide to penetrating modern cloud systems will help hackers of all stripes succeed on their next adventure.

About the Author

Sparc Flow is a computer security expert specializing in ethical hacking, who has presented his research at international security conferences like Black Hat, DEF CON, Hack In The Box, and more. While his day job consists mainly of performing penetration tests against companies so they can patch vulnerabilities, his passion is writing and sharing hacking knowledge through his acclaimed Hack the Planet books.

In this Book

  • Introduction
  • Becoming Anonymous Online
  • Return of Command and Control
  • Let There Be Infrastructure
  • Healthy Stalking
  • Vulnerability Seeking
  • Fracture
  • Behind the Curtain
  • Shawshank Redemption: Breaking Out
  • Sticky Shell
  • The Enemy Inside
  • Nevertheless, We Persisted
  • Apotheosis
  • Final Cut
SHOW MORE
FREE ACCESS

YOU MIGHT ALSO LIKE

Course CompTIA Cloud+ : Cloud High Availability & Scaling
Rating 4.7 of 40 users Rating 4.7 of 40 users (40)
Course AWS Cloud Practitioner 2023: Overview of Cloud Security
Rating 5.0 of 2 users Rating 5.0 of 2 users (2)
Book Empirical Cloud Security: Practical Intelligence to Evaluate Risks and Attacks, Second Edition