Research
Beware the Azure Guest User: How to Detect When a Guest User Account Is Being Exploited
In Azure environments, guest users are the go-to option when giving access to a user from a different tenant. Often,...
All articles by Roee Sagi
Discovered Vulnerabilities
CosMiss: Azure Cosmos DB Notebook Remote Code Execution Vulnerability
The Orca Research Pod has discovered CosMiss, a vulnerability in Microsoft Azure Cosmos DB where authentication checks were missing from...
Discovered Vulnerabilities
FabriXss (CVE-2022-35829): How We Managed to Abuse a Custom Role User Using CSTI and Stored XSS in Azure Fabric Explorer
The Orca Research Pod has discovered FabriXss, a vulnerability in Azure Service Fabric Explorer
Research
Azure AD & IAM (Part III) – Leveraging Managed Identities for Privilege Escalation
In the third part of the Orca Security blog post series about Azure AD and IAM, Roee shares research on...
Research
Azure AD & IAM (Part II) – Leveraging Managed Identities For Privilege Escalation
Table of contentsWhat are managed identities?Getting a managed identity access tokenThe known privilege escalation methodMy research objectivesEscalation to managed identities’...
Research
Privilege Escalation on Azure (Part I): An Introduction to Azure AD & IAM
A short tutorial on Azure Active Directory (AD) & IAM to lay the the groundwork for future posts.
Personalized Demo
See Orca Security in Action
Gain visibility, achieve compliance, and prioritize risks with the Orca Cloud Security Platform.