Skip to content
TechProject
  • Blog
  • CTF Games
  • #whoami
  • Old Blog (archive)

Tag: aws

Azure CloudQuarry: Searching for secrets in Public VM Images

November 19, 2024 stita Leave a comment

Article published on SecurityCafe.ro: https://securitycafe.ro/2024/11/19/azure-cloudquarry-searching-for-secrets-in-public-vm-images/

Read More →

Categories: Cloud Security, Research Tags: access keys, AIS, aws, Azure, Azure Image Scanner, Cloud Security, CloudQuarry, Images, Managed disk, Marketplace, Public, Research, secrets, Storage Account

AWS vs Azure: A “Secure by default” comparison

September 3, 2024 stita Leave a comment

Article published on SecurityCafe.ro: https://securitycafe.ro/2024/09/03/aws-vs-azure-a-secure-by-default-comparison/

Read More →

Categories: Cloud Security Tags: access keys, AssumeRole, aws, Azure, Config Review, IAM Policies, IMDS, Interactive Login, Lambda, Managed Identity, Metadata Service, RBAC, S3 Bucket, security, SSRF

A Complete Kubernetes Config Review Methodology

February 27, 2023 stita Leave a comment

The are many resources out there that tap into the subject of Kubernetes Pentesting or Configuration Review, however, they usually detail specific topics and misconfigurations and don’t offer a broad perspective on how to do a complete Security Review. That is why in this article I want to cover a more complete overview on all […]

Read More →

Categories: Cloud Security Tags: amazon, aws, configuration review, container, docker, eks, k8s, kubernetes, methodology, penetration testing, pentesting, permission, pods, policies, privilege escalation, roles, secrets, security context, service account, services, verbs, vulnerability
Back to top ↑
2025 © TechProject