Sua Cloud Está Vazando Sozinha?
Cloud misconfiguration audit — S3/GCS/Azure Blob público, IAM frouxo, security group 0.0.0.0/0, snapshot público, banco RDS exposto.
Why now
The real pain
Cloud não é hackeada — é mal configurada. Bucket S3 com 14M de currículos, security group com SSH aberto pro mundo, snapshot RDS público com backup completo. Tudo isso é descoberto por scanner público (Shodan, Censys, Grayhat Warfare) em minutos.
References and threat actors
/attack-surface
Cloud Misconfig
Every engagement is designed for your environment. The points below are part of our standard playbook for this sector — final scope is adapted to your stack and contract.
Object storage público
S3, GCS, Azure Blob, R2 — bucket público, ACL frouxa, signed URL eterna.
Security group / firewall rule
Rule 0.0.0.0/0, porta admin exposta, RDP/SSH/Redis/Mongo na internet.
IAM excessivamente permissivo
Policy * — *, role com AdministratorAccess pra qualquer instance, AssumeRole chain frouxa.
Database e snapshot público
RDS público, snapshot público (RDS, EBS, Disk Image), backup em bucket aberto.
Kubernetes API público
EKS/GKE/AKS com API server público sem allowlist, dashboard exposto.
Container registry público
ECR/GCR/ACR público, imagem com secret em layer, ECR sem image scanning.
/methodology
Genuinely manual pentest
Automated scanners find what's documented. Real attackers find what isn't. 90% of the work is manual — performed by specialists holding OSCP, CISSP, CRTO and GPEN.
01 · Reconnaissance
Target mapping, OSINT, footprint, sector-specific threat modeling.
02 · Discovery
Deep enumeration, complementary scanning, manual exposure identification.
03 · Exploitation
Manual validation with controlled PoC, finding chaining, escalation.
04 · Report
Executive + technical, step-by-step replication, mapped to applicable regulation.
/why-trust
Who has trusted our work
Auditoria preventiva e pós-incidente em SaaS, fintech e healthtech. Frequente: encontramos 50+ misconfigs críticas em primeira passagem.
Technical assessment recognized in highly regulated, mission-critical environments — the pentest that finds what nobody had found before.
Douglas Lopes
Founder · CEO · intrus.io
/faq
FAQ — Cloud Misconfig
É diferente de Cloud Security Posture Management (CSPM)?
Complementar. CSPM (Wiz, Lacework, Orca) faz monitoring contínuo. Pentest manual valida exploitability, contextualiza risco, encontra o que regra de scanner não detecta (lógica multi-account).
Faixa de preço?
Conta cloud single (snapshot): R$ 12-30k. Multi-account: R$ 30-90k. Plataforma multi-cloud enterprise: R$ 80-200k.
/contact
Mapear minhas misconfigs
Schedule a confidential meeting. Within 48h we'll send a proposal with scope, timeline and pricing.