This session will outline a low cost, non-intrusive “guerilla style” security assessment approach for cloud-based applications. Using a real world case study, see how we can thoroughly assess custom applications in a cloud environment without administrative access or authorization to conduct active testing using freely available, highly customizable tools.