Preparing our first vulnerable environment
As discussed in the previous section, our first vulnerable environment will be composed of a single misconfigured Amazon S3 bucket containing a few sample files. There are a variety of ways to create an empty S3 bucket. In this chapter, we’ll use the AWS Management Console to create our bucket.
This section is composed of four subparts:
- Creating an empty S3 bucket
- Configuring the S3 bucket to host a static website
- Updating the S3 bucket configuration settings
- Uploading files to the S3 bucket
Important note
Since we’ll be preparing an intentionally vulnerable S3 bucket, make sure you don’t use this S3 bucket to store production data (or files that contain sensitive information).
Creating an empty S3 bucket
We will start by creating an empty S3 bucket. Make sure that you are logged in using the “target account” (the first AWS account).
Important note
You may also...
