Tiering Entra roles and application permissions based on known attack paths
An attempt to better understand the security implications of cloud administrative assets.
Posts by Tag
- Azure 6
- Pentesting 6
- Red-teaming 6
- Microsoft Graph 5
- Entra ID 5
- Containers 2
- Distrofull 2
- Distroless 2
- Docker 2
- Container scanner 1
- Vulnerability management 1
- 0-day 1
- Azure Cognitive Search 1
- Container registries 1
- Kubernetes 1
- Administrative tiering 1
- Tier model 1
Azure
Abusing PIM-related application permissions in Microsoft Graph - Part 4
Investigating legacy permissions.
Abusing PIM-related application permissions in Microsoft Graph - Part 3
Bypassing assignment, eligibility and activation requirements.
Abusing PIM-related application permissions in Microsoft Graph - Part 2
Escalating to Global Admin via eligible assignments.
Abusing PIM-related application permissions in Microsoft Graph - Part 1
Escalating to Global Admin via active assignments.
ACSESSED: Cross-tenant network bypass in Azure Cognitive Search
How enabling a single vulnerable feature removed the entire network and identity perimeter around internet-isolated Azure Cognitive Search instances.
Pentesting
Tiering Entra roles and application permissions based on known attack paths
An attempt to better understand the security implications of cloud administrative assets.
Abusing PIM-related application permissions in Microsoft Graph - Part 4
Investigating legacy permissions.
Abusing PIM-related application permissions in Microsoft Graph - Part 3
Bypassing assignment, eligibility and activation requirements.
Abusing PIM-related application permissions in Microsoft Graph - Part 2
Escalating to Global Admin via eligible assignments.
Abusing PIM-related application permissions in Microsoft Graph - Part 1
Escalating to Global Admin via active assignments.
Infecting container images to spread in large-scale container-based infrastructures
How trusting container images may allow threat actors to spread in container-based infrastructures like Kubernetes.
Red-teaming
Tiering Entra roles and application permissions based on known attack paths
An attempt to better understand the security implications of cloud administrative assets.
Abusing PIM-related application permissions in Microsoft Graph - Part 4
Investigating legacy permissions.
Abusing PIM-related application permissions in Microsoft Graph - Part 3
Bypassing assignment, eligibility and activation requirements.
Abusing PIM-related application permissions in Microsoft Graph - Part 2
Escalating to Global Admin via eligible assignments.
Abusing PIM-related application permissions in Microsoft Graph - Part 1
Escalating to Global Admin via active assignments.
Infecting container images to spread in large-scale container-based infrastructures
How trusting container images may allow threat actors to spread in container-based infrastructures like Kubernetes.
Microsoft Graph
Tiering Entra roles and application permissions based on known attack paths
An attempt to better understand the security implications of cloud administrative assets.
Abusing PIM-related application permissions in Microsoft Graph - Part 4
Investigating legacy permissions.
Abusing PIM-related application permissions in Microsoft Graph - Part 3
Bypassing assignment, eligibility and activation requirements.
Abusing PIM-related application permissions in Microsoft Graph - Part 2
Escalating to Global Admin via eligible assignments.
Abusing PIM-related application permissions in Microsoft Graph - Part 1
Escalating to Global Admin via active assignments.
Entra ID
Tiering Entra roles and application permissions based on known attack paths
An attempt to better understand the security implications of cloud administrative assets.
Abusing PIM-related application permissions in Microsoft Graph - Part 4
Investigating legacy permissions.
Abusing PIM-related application permissions in Microsoft Graph - Part 3
Bypassing assignment, eligibility and activation requirements.
Abusing PIM-related application permissions in Microsoft Graph - Part 2
Escalating to Global Admin via eligible assignments.
Abusing PIM-related application permissions in Microsoft Graph - Part 1
Escalating to Global Admin via active assignments.
Containers
Infecting container images to spread in large-scale container-based infrastructures
How trusting container images may allow threat actors to spread in container-based infrastructures like Kubernetes.
Managing vulnerabilities in software containers: how to avoid common pitfalls
How a few common misconceptions about vulnerability patching and detection in software containers can give a false sense of security, and cause you to potent...
Distrofull
Infecting container images to spread in large-scale container-based infrastructures
How trusting container images may allow threat actors to spread in container-based infrastructures like Kubernetes.
Managing vulnerabilities in software containers: how to avoid common pitfalls
How a few common misconceptions about vulnerability patching and detection in software containers can give a false sense of security, and cause you to potent...
Distroless
Infecting container images to spread in large-scale container-based infrastructures
How trusting container images may allow threat actors to spread in container-based infrastructures like Kubernetes.
Managing vulnerabilities in software containers: how to avoid common pitfalls
How a few common misconceptions about vulnerability patching and detection in software containers can give a false sense of security, and cause you to potent...
Docker
Infecting container images to spread in large-scale container-based infrastructures
How trusting container images may allow threat actors to spread in container-based infrastructures like Kubernetes.
Managing vulnerabilities in software containers: how to avoid common pitfalls
How a few common misconceptions about vulnerability patching and detection in software containers can give a false sense of security, and cause you to potent...
Container scanner
Managing vulnerabilities in software containers: how to avoid common pitfalls
How a few common misconceptions about vulnerability patching and detection in software containers can give a false sense of security, and cause you to potent...
Vulnerability management
Managing vulnerabilities in software containers: how to avoid common pitfalls
How a few common misconceptions about vulnerability patching and detection in software containers can give a false sense of security, and cause you to potent...
0-day
ACSESSED: Cross-tenant network bypass in Azure Cognitive Search
How enabling a single vulnerable feature removed the entire network and identity perimeter around internet-isolated Azure Cognitive Search instances.
Azure Cognitive Search
ACSESSED: Cross-tenant network bypass in Azure Cognitive Search
How enabling a single vulnerable feature removed the entire network and identity perimeter around internet-isolated Azure Cognitive Search instances.
Container registries
Infecting container images to spread in large-scale container-based infrastructures
How trusting container images may allow threat actors to spread in container-based infrastructures like Kubernetes.
Kubernetes
Infecting container images to spread in large-scale container-based infrastructures
How trusting container images may allow threat actors to spread in container-based infrastructures like Kubernetes.
Administrative tiering
Tiering Entra roles and application permissions based on known attack paths
An attempt to better understand the security implications of cloud administrative assets.
Tier model
Tiering Entra roles and application permissions based on known attack paths
An attempt to better understand the security implications of cloud administrative assets.