New
Introducing: 🧪 Cybr Hands-On Labs
Learn AWS Security By Doing
Build practical skills. One Cybr Lab at a time.
1-Click Lab Deployments
AWS lab environments at the click of a button. Skip the hassle of creating practice accounts and dive straight into using real resources like:
Close your AWS Security Skills Gap
Choose your adventure:
Attack Cloud Environments
Find weaknesses in AWS cloud environments before threat actors do so they can be fixed
Defend Cloud Environments
Learn how to apply AWS security best practices for prevention, detection, and response
Risk-free learning
Keep vulnerable training environments far away from corporate resources
Practical learning
Dive in and learn at your own pace with real resources and real-world scenarios
Never worry about costs
No surprise bills when you forget to turn off or delete resources
Accessible anytime, anywhere
All you need is an Internet connection
List & Roadmap of Labs
🔵 = Defensive
🔴 = Offensive
⛳️ = CTF
Available now:
- 🔵 Configure Security Groups (SGs) and NACLs
- 🔵 Create a VPC with Public and Private Subnets
- 🔵 Deploy AWS WAF ACL for Application Load Balancer
- 🔴 S3 Data Exfiltration via EC2 IMDSv1 ⛳️
- 🔴 PrivEsc via IAM versions ⛳️
- 🔴 Lambda function SQL Injection to access secrets ⛳️
- 🔵 Amazon GuardDuty Sandbox
- 🔵 Amazon Inspector Sandbox
Upcoming labs:
- 🔴 IAM CreateAccessKey PrivEsc ⛳️
- 🔴 IAM CreateLoginProfile PrivEsc ⛳️
- 🔴 IAM UpdateLoginProfile PrivEsc ⛳️
- 🔴 ECS Takeover via RCE and container escape ⛳️
- 🔵 CloudTrail security automation with CloudWatch logs and SNS alerts
- and more…