Blog Archives | Page 122 of 129

Azure AD & IAM (Part II) – Leveraging Managed Identities For Privilege Escalation

Research

Azure AD & IAM (Part II) – Leveraging Managed Identities For Privilege Escalation

Table of contentsWhat are managed identities?Getting a managed identity access tokenThe known privilege escalation methodMy research objectivesEscalation to managed identities’...

Roee Sagi

Dec 23, 2021

Network security group flow log retention period is less than 90 days or disabled

Network security group flow log retention period is less than 90 days or disabled

Logs can be used to check for anomalies and give insight into suspected breaches. Flow logs on network watcher {AzureNetworkFlowLog}...

Orca Security

Dec 16, 2021

AWS re:Invent 2021 Recap: Cloud Security at the PagerDuty Theater

Amazon Web Services

AWS re:Invent 2021 Recap: Cloud Security at the PagerDuty Theater

Orca Security presented "Invisible Security at the Speed of Cloud" at AWS Re:Invent 2021. Here’s a recap of what we...

Jacob Graves

Dec 06, 2021

Research

Google Cloud Platform IAM

Google’s approach to Identity and Access Management is relatively the most straightforward among the three major cloud providers.

Tohar Braun

Dec 02, 2021

3 Hidden Security Costs Behind Many Failed Projects

CISO Corner

3 Hidden Security Costs Behind Many Failed Projects

Security projects are often derailed by hidden security costs that can place additional burdens on an organization.

Andy Ellis

Dec 01, 2021

Blog

Azure AD & IAM (Part II) – Leveraging Managed Identities For Privilege Escalation

Network security group flow log retention period is less than 90 days or disabled

AWS re:Invent 2021 Recap: Cloud Security at the PagerDuty Theater

Google Cloud Platform IAM

3 Hidden Security Costs Behind Many Failed Projects

Sensitive AWS Keys on System

Password in Shell History

Sensitive Data in File

Sensitive Info in Git Repository

Cloud Security Platform

Technology Ecosystem

By Solution

By Industry

Comparisons