Adversary Perspectives: Azure

Description

Before you can emulate or defend against the tactics of an adversary operating in Azure, first you must understand their perspective. How do premiere security operators view Azure’s infrastructure components, common architecture designs, and security controls? Through hands-on labs, this course teaches participants how to identify misconfigurations in Azure that are commonly leveraged by attackers. Participants should expect to walk away from Adversary Perspectives: Azure with a strong foundation of Azure security knowledge and first step on their journey of attacking or defending corporate Azure and Entra (Azure AD) environments.

This course is centered around the Azure and Entra ID (formerly Azure AD) platforms, but aims to teach an adversary-focused approach to traditional security practices that can be applicable to other environments.

Key Learning Objectives

Understand how to identify misconfigurations for common Azure components, such as virtual machines and function apps

Understanding of Azure AD (Entra) and how it relates to Azure

Confidence in approaching an Azure environment in an offensive security engagement.

Who Should Attend?

Adversary Perspectives: Azure is intended for security professionals of any experience level looking to learn more about Azure security and common attacks from an adversary’s perspective.

Prerequisite Knowledge

The course assumes no prior Azure knowledge, though participants should have a basic familiarity with cloud concepts and would benefit from previous exposure to an enterprise Azure environment.

Hardware Requirements

Participants must provide their own computer with a modern web browser installed to access training materials and complete the course’s labs. All course materials and labs are hosted in the SpecterOps training portal; there are no local virtual machines or special software required to fully participate in the course or labs.

Bio