If our assets are in the cloud, we can apply penetration tests on them like any other system with an IP address. But setting up a penetration testing lab can be time-consuming and expensive (unless you have the hardware already). So we will be using a free service called Hack A Server, which offers vulnerable machines to pwn in the cloud. We will be using an instance of Metasploit Pro here in this experiment.
To pentest in the cloud, the following will be required: