Skip to main content

11. In an attack‑defence scenario, if you have taken control of a machine but it is only a cloud host with no internal network connection and no cloud internal network, how would you further exploit this cloud host?

  1. Lateral movement: Although there is no direct internal network connection at present, you can attempt to use the cloud host as a jump box to seek other possible attack paths. For example, scan other open services on the internet to see if you can find other systems related to the target cloud service.
  2. Social engineering: Use the information on the cloud host to conduct social engineering attacks, such as tricking employees of the target organisation via email or telephone to obtain more sensitive information or induce them to perform malicious actions.
  3. Leveraging cloud service features: Investigate specific features of the cloud service provider, such as object storage and API access, to see if it is possible to attack through these services.