SANS GCPN Experience

SEC588: Cloud Penetration Testing

In my previous blogpost I covered my preparation and exam experience with GPEN. In this blogpost I will be covering my experience with training and exam preparation for GCPN.

Training

I signed up for the in-person class and instructor of the class is Moses Frost who is also the course author. The training is for 6 days, starts on a Monday and goes till Saturday. If 6 days class is too much and need some time to do labs and learn the topics in a bit details, I would recommend the on-demand option where you will get access to the lectures and labs for a time period (few months I think). I have not opted for this option, so I do not have many details. On-Demand learning and signup for course can be found from SANS Site (link below in references).

Preparation

I started to read books ahead of my class, (note: since this is cloud class, we get access to labs on the day of the class with VPN config files). I started a rough indexing while reading the books before the class started. I made a list of topics I need to pay a closer attention during the class time while reading the books for additional understanding. Tip is to practice the labs as much as you can during the class week and take notes. On day 6 the we will loose access to the labs and need to pay extra for extended lab access. There are a few labs that are offline and do not require online access. There are a good amount of online CTF platforms that can be utilized to…