Identity & Access Management (IAM)
- Over-permissive roles, policies and trust relationships
- Voies d'escalade de privilèges et d'assumption de rôle
- Weak MFA, exposed access keys and secrets
- Least-privilege and segregation-of-duties review
Storage & Data Security
- S3, Azure Blob and GCS exposure and ACL review
- Encryption-at-rest and key-management review
- Exposed databases and backups
- Sensitive data leakage across services
Compute, Serverless & Containers
- VM, EC2 and Azure VM configuration and SSH/RDP exposure
- Serverless (Lambda, Azure/GCP Functions) abuse
- Sécurité des conteneurs et de Kubernetes/ECS
- Cloud-native app, API and microservice testing
Réseau, Exposition et Normes
- Groupe de sécurité, séparation réseau et exposition publique
- Ports ouverts et erreurs de configuration du routage
- Lateral-movement and pivot testing
- Alignment with CIS Benchmarks, PCI DSS and SANS Top 25