Attacking Cloud Service Providers (ACSP) – An interactive textbook on control-plane intrusion and breaking cross-tenant isolation

Attacking Cloud Service Providers (ACSP) is an interactive textbook on control-plane intrusion and breaking cross-tenant isolation, built from 275 real-world cloud service provider(CSP) vulnerabilities. This book is about hacking the cloud provider itself — breaking into the control plane, defeating cross-tenant isolation, and exploiting provider-side services and trust boundaries. It is not a guide to pentesting a single customer’s cloud account. The target is the provider; the prize is everyone else’s tenant. If your mental model of “cloud security” is misconfigured S3 buckets, this book will rebuild it. submitted by /u/senyuuri [link] [comments]Technical Information Security Content & DiscussionRead More