Explore threat hunting techniques in cloud environments through this conference talk from NorthSec 2019. Gain insights from security experts Kurtis Armour and Jacob Grant as they delve into cloud service providers, shared responsibility models, and the challenges of applying traditional network security tools to cloud infrastructures. Learn about various attacker motivations, real-world cloud attacks, and enterprise architecture examples for both AWS and general cloud environments. Discover CSP attacker tools and methods for detecting direct attacks against cloud service providers. Examine endpoint considerations, including forensics data collection and PowerShell visibility. Understand how to execute code using Azure and AWS APIs, as well as endpoint execution techniques, to enhance your cloud security posture and threat hunting capabilities.