HoneyTokens AWS y Azure

AWS Honeytokens, closely related to honeypots, are ‘tripwires’ that you leave on machines and data stores as early warning indications of a breach. Using AWS IAM access keys, we can create nearly limitless honeytokens for attackers to stumble upon – and it’s...

Azure password spraying

A password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if a user cred is valid, if MFA is enabled on the account, if a tenant doesn’t exist, if a user doesn’t exist, if the account is locked, or if the account is disabled. A...

IP a CloudService Script

Check which cloud provider is hosting a particular IP address. Some providers will also have service and region listed Resolves an IP address to the cloud provider it is hosted on https://github.com/oldrho/ip2provider 15 forks. 82 stars. 4 open issues. Recent commits:...

Azure resource enummeration

Stormspotter creates an “attack graph” of the resources in an Azure subscription. It enables red teams and pentesters to visualize the attack surface and pivot opportunities within a tenant, and supercharges your defenders to quickly orient and prioritize incident...

Azure para building .NET

Con azure puedes buildear tu C code por ejemplo https://github.com/GhostPack/SharpUp sin instalar windows: Use a pipeline to automatically build and test your .NET Core projects. Learn how to: Set up your build environment with Microsoft-hosted or self-hosted agents....

Identity and access in Azure Active Directory

Azure AD Azure AD is Microsoft’s cloud-based identity and access management service which provides single sign-on and multi-factor authentication. Azure AD is not a cloud version of Windows Server Active Directory. It’s also not intended as a complete...

Network security in Azure

Azure virtual networks provide key networking capabilities: Isolation and segmentation Internet communications Communicate between Azure resources Communicate with on-premises resources point to site vpn site to site vpn express route Route network traffic Filter...

Azure Baselines

Cuando estaba haciendo el Azure 500 me encontre que recomiendan explicitamente unas baselines de CIS. Te dicen como checarlo e incluso te lo explican https://docs.microsoft.com/en-us/learn/modules/create-security-baselines/ Los domains son: Create a platform security...

Secure your cloud applications in Azure

Defense in depth Each layer can implement one or more of the CIA concerns. Defense in depth # Ring Example Principle 1 Data Data encryption at rest in Azure blob storage Integrity 2 Application SSL/TLS encrypted sessions Integrity 3 Compute Regularly apply OS and...

Azure fundamentals Resumen

Pues, he decidido aprender más de cloud porque siento que todos mis pentests me llevan a eso. El plan general es Azure fundamentals y luego security 500 (tal vez administrator) y luego AWS Fundamentals y Security Speciality. Planeo ponerle un poco de pentesting en...