🛠️ Role-based learning paths

Blue-teaming

If you are primarily interested in learning AWS from a defensive perspective, or if you’re not sure what role you are interested in but want to learn as much about AWS security as possible, here’s a general learning path we would recommend:

• Intro to AWS Security
• Beginners guide to AWS CloudTrail for Security
• Terraform on AWS: From Zero to Cloud Infrastructure
• Amazon S3 Security
• Practical Guide to AWS IAM Roles
• Incidence response with CloudTrail and Athena
• Introduction to AWS Enumeration
• Pentesting AWS Environments
• IAM Privilege Escalation Labs

Red-teaming

If you're primarily just interested in red teaming, you might prefer this order:

• Intro to AWS Security
• Beginners guide to AWS CloudTrail for Security (set this up early so you can later understand how your actions get tracked)
• Practical Guide to AWS IAM Roles
• Introduction to AWS Enumeration