This content is open to everyone — sign in to save your progress, earn points, and unlock module exams.
Topic 2.2 of Cloud Threats and Attack Vectors
Credential exposure channels, EDoS attacks exploiting cloud elasticity, and mitigation controls.
By the end of this topic, you will
Quadrant 1 · e-Tutorial
Quadrant 2 · e-Content
Quadrant 3 · Web Resources
Downloadable reference material
External links
Detecting and Preventing Cryptomining on AWS
AWS guidance on detecting cryptomining as a common post-compromise service hijacking scenario.
Detecting and Preventing Cryptomining on AWS
AWS guidance on detecting cryptomining as a common post-compromise service hijacking scenario.
AWS Shield Advanced — DDoS Protection Documentation
Official AWS Shield documentation for DDoS protection configuration and response.
AWS Shield Advanced — DDoS Protection Documentation
Official AWS Shield documentation for DDoS protection configuration and response.
truffleHog — Credential Scanning in Git Repositories
Open-source tool for detecting exposed credentials in source code and git history.
truffleHog — Credential Scanning in Git Repositories
Open-source tool for detecting exposed credentials in source code and git history.
AWS Cost Anomaly Detection
AWS service for detecting unusual spending patterns that may indicate EDoS or credential compromise.
AWS Cost Anomaly Detection
AWS service for detecting unusual spending patterns that may indicate EDoS or credential compromise.
Quadrant 4 · Self-Assessment
Cloud Threats, Attacks and Privacy
CSA Top 10, SSRF/IMDS, IMDSv2, EDoS, man-in-the-cloud, STRIDE, MITRE ATT&CK for Cloud, and data residency.
Cloud Security: Complete Assessment
Comprehensive 120-question assessment covering all six chapters of the Cloud Security eBook 2026.