#cloud_security 検索結果
I’m happy to share that I’ve obtained a new certification: Advent of Cyber 2024 from @RealTryHackMe! #ctf #soc #cloud_security #dfir #thm
#Cloud_Security 1. One Token to rule them all - obtaining Global Admin in every Entra ID tenant via Actor tokens (CVE-2025-55241) dirkjanm.io/obtaining-glob… 2. AWS Infrastructure Canarytoken blog.thinkst.com/2025/09/introd… // new feature allowing quick deployment of decoy AWS resources (S3,…
#Cloud_Security 1. Decoding UserAuthenticationMethod in Microsoft 365 audit logs: the bitfield mapping blog.sekoia.io/userauthentica… // The "UserAuthenticationMethod" in MS 365 logs is an undocumented bitfield representing primary authentication methods, decoded through community…
#Cloud_Security 100 Methods for Container Attacks redteamrecipe.com/100-Method-For…
#tools #Cloud_Security "ORCA: Unveiling Obscure Containers In The Wild", 2025. ]-> Container image scanning tool - github.com/kube-security/… // Obscuration-Resilient Container Analyzer
#Cloud_Security 1. ModeLeak: Privilege Escalation to LLM Model Exfiltration in Vertex AI unit42.paloaltonetworks.com/privilege-esca… 2. Dirty DAG: New Vulnerabilities in Azure Data Factory’s Apache Airflow Integration unit42.paloaltonetworks.com/azure-data-fac… ]-> Automation and Hardening of Kubernetes Cluster -…
Being in the cloud doesn’t mean you’re automatically secure ⛔️ Cloud security is a shared responsibility, and the right partner ensures protection is part of the design, not an afterthought. With the right partner, #cloud_security becomes built-in not bolted on 🤝🏼 #NourNet
#tools #Cloud_Security 1. A collection of resources, tools and more for pentesting/securing MS Azure github.com/Kyuu-Ji/Awesom… 2. Finding complex attack paths in Kubernetes clusters labs.withsecure.com/tools/icekube-… ]-> github.com/WithSecureLabs…
#tools #Cloud_Security PowerShell script to enumerate access permissions in an Azure AD environment github.com/csandker/Azure…
github.com
GitHub - csandker/Azure-AccessPermissions
Contribute to csandker/Azure-AccessPermissions development by creating an account on GitHub.
#Cloud_Security #WebApp_Security Microsoft Power Pages SaaS: Data Exposure Reviewed appomni.com/ao-labs/micros…
#tools #hardening #Cloud_Security "KubeGuard: LLM-Assisted Kubernetes Hardening via Configuration Files and Runtime Logs Analysis", 2025. ]-> Kubernetes Security Scanner - github.com/mvrao94/KubeGu… // KubeGuard is designed to harden K8s environments through two complementary…
github.com
GitHub - mvrao94/KubeGuard: KubeGuard is a lightweight, self-hosted security scanner for Kubernet...
KubeGuard is a lightweight, self-hosted security scanner for Kubernetes, built with Java and Spring Boot. It provides developers and DevOps engineers with quick insights into common security miscon...
#Cloud_Security #Offensive_security 1. Escalating to Entra ID's Global Admin with a first-party app securitylabs.datadoghq.com/articles/i-spy… 2. Abusing Default Machine Joining to Domain Permissions to Attack AWS Managed Active Directory permiso.io/blog/abusing-d…
#Cloud_Security 1. Decoding UserAuthenticationMethod in Microsoft 365 audit logs: the bitfield mapping blog.sekoia.io/userauthentica… // The "UserAuthenticationMethod" in MS 365 logs is an undocumented bitfield representing primary authentication methods, decoded through community…
The future of #cloud_security will be shaped by advances in #artificial_intelligence (AI) and #machine_learning (ML), which will help organizations detect and respond to #threats more quickly and efficiently. telecomreviewafrica.com/articles/featu…
#tools #Cloud_Security 1. Am I Isolated - security posture benchmarking tool for container environment github.com/edera-dev/am-i… 2. ScoutSuite - Multi-Cloud Security Auditing Tool (AWS/Azure/GCP/Aliyun/OCI) github.com/nccgroup/Scout… 3. Halberd - Multi-Cloud Security Testing Tool…
#Tech_book #Cloud_Security "Spring Security: Effectively secure your web apps, RESTful services, cloud apps, and microservice architectures", 4th Edition, 2024. ]-> Code: github.com/PacktPublishin…
#Cloud_Security 1. Decoding UserAuthenticationMethod in Microsoft 365 audit logs: the bitfield mapping blog.sekoia.io/userauthentica… // The "UserAuthenticationMethod" in MS 365 logs is an undocumented bitfield representing primary authentication methods, decoded through community…
#Cloud_Security #Threat_Research #Blue_Team_Techniques "Learning to Triage Taint Flows Reported by Dynamic Program Analysis in Node.js Packages", 2025. ]-> Tool and Dataset - zenodo.org/records/167582… // Program analysis tools often produce large volumes of candidate vulnerability…
#Cloud_Security 1. Decoding UserAuthenticationMethod in Microsoft 365 audit logs: the bitfield mapping blog.sekoia.io/userauthentica… // The "UserAuthenticationMethod" in MS 365 logs is an undocumented bitfield representing primary authentication methods, decoded through community…
#exploit #Cloud_Security #Hardware_Security "Rain: Transiently Leaking Data from Public Clouds Using Old Vulnerabilities", 2025. ]-> "L1TF Reloaded" PoC Exploit - vusec.net/projects/rain/ ]-> Affected Processors - intel.com/content/www/us… // this research provides a detailed…
vusec.net
Rain: Cloud Leakage via Hardware Vulnerabilities - vusec
The discovery of Spectre and Meltdown in 2017 marked the first instances of “transient execution vulnerabilities”. These are vulnerabilities in the internal design of CPUs (their “microarchitecture...
#Cloud_Security 1. One Token to rule them all - obtaining Global Admin in every Entra ID tenant via Actor tokens (CVE-2025-55241) dirkjanm.io/obtaining-glob… 2. AWS Infrastructure Canarytoken blog.thinkst.com/2025/09/introd… // new feature allowing quick deployment of decoy AWS resources (S3,…
#tools #Cloud_Security "ORCA: Unveiling Obscure Containers In The Wild", 2025. ]-> Container image scanning tool - github.com/kube-security/… // Obscuration-Resilient Container Analyzer
#tools #hardening #Cloud_Security "KubeGuard: LLM-Assisted Kubernetes Hardening via Configuration Files and Runtime Logs Analysis", 2025. ]-> Kubernetes Security Scanner - github.com/mvrao94/KubeGu… // KubeGuard is designed to harden K8s environments through two complementary…
github.com
GitHub - mvrao94/KubeGuard: KubeGuard is a lightweight, self-hosted security scanner for Kubernet...
KubeGuard is a lightweight, self-hosted security scanner for Kubernetes, built with Java and Spring Boot. It provides developers and DevOps engineers with quick insights into common security miscon...
#Cloud_Security Black Hat USA 2025: "Expanding Privileges in the Cloud: Exploring Security Boundaries in Amazon ECS". ]-> PoC for CVE-Requested vulnerability in Amazon ECS allowing cross-task IAM credential theft - github.com/naorhaziz/ecsc…
github.com
GitHub - naorhaziz/ecscape: PoC for CVE-Requested vulnerability in Amazon ECS (EC2 launch type)...
PoC for CVE-Requested vulnerability in Amazon ECS (EC2 launch type) allowing cross-task IAM credential theft. - naorhaziz/ecscape
Being in the cloud doesn’t mean you’re automatically secure ⛔️ Cloud security is a shared responsibility, and the right partner ensures protection is part of the design, not an afterthought. With the right partner, #cloud_security becomes built-in not bolted on 🤝🏼 #NourNet
#Tech_book #Cloud_Security #Blue_Team_Techniques "Ultimate Splunk for Cybersecurity", ]-> Repo - github.com/ava-orange-edu… // Practical Strategies for SIEM Using Splunk’s Enterprise Security for Threat Detection, Forensic Investigation, and Cloud Security
#Cloud_Security #Offensive_security 1. Escalating to Entra ID's Global Admin with a first-party app securitylabs.datadoghq.com/articles/i-spy… 2. Abusing Default Machine Joining to Domain Permissions to Attack AWS Managed Active Directory permiso.io/blog/abusing-d…
#AppSec #Cloud_Security 1. Attacking JWT using X.509 Certificates trustedsec.com/blog/attacking… 2. Code execution from web browser using URL schemes handled by KDE's KTelnetService and Konsole (CVE-2025-49091) proofnet.de/publikationen/… 3. A vulnerability in Real User Monitoring feature…
#Cloud_Security #Offensive_security Initial Access Attack in Azure - Understanding and Executing the Illicit Consent Grant Attack in 2025 alteredsecurity.com/post/initial-a… ]-> 365-Stealer - Phishing Simualtion Tool - github.com/AlteredSecurit… ]-> Detect and Remediate Illicit Consent Grants -…
#MLSecOps #Whitepaper #Cloud_Security "Agentic AI Red Teaming Guide", CSA, 2025. ]-> A Dynamic Environment to Evaluate Prompt Injection Attacks and Defenses for LLM Agents - arxiv.org/pdf/2406.13352 ]-> Repo - github.com/ethz-spylab/ag… ]-> A Standardized Evaluation Framework…
#tools #Research #Cloud_Security "Quantifying Azure RBAC Wildcard Overreach", 2025. ]-> CLI tool for analyzing Azure RBAC actions - github.com/labyrinthinese… ]-> An Azure SPN access minimizer - github.com/labyrinthinese…
The impact of the outage can range from minor disruptions to complete service unavailability, affecting businesses and users worldwide. Google's engineers were actively working on full recovery, but no specific timeline was provided. 🤝 #cloud_security
#Tech_book #Cloud_Security "Spring Security: Effectively secure your web apps, RESTful services, cloud apps, and microservice architectures", 4th Edition, 2024. ]-> Code: github.com/PacktPublishin…
The future of #cloud_security will be shaped by advances in #artificial_intelligence (AI) and #machine_learning (ML), which will help organizations detect and respond to #threats more quickly and efficiently. telecomreviewafrica.com/articles/featu…
#Cloud_Security_And_The_Best_Ways_To_Secure_It_From_Breaches #Cloud_Security #Penetartion_Testing | Briskinfosec #https://bit.ly/3bk3uXB @briskinfosec
تمتع بأفضل الخدمات و #الحلول_السحابية الأكثر أماناً في المملكة! للمزيد 👈 cloud.sahara.com #cloud_security #cloud
Enjoy the most secure #cloud services and solutions in KSA! Learn more 👉 cloud.sahara.com #cloud_security
فيصل اليوسف، مدير أمن المعلومات في صحارى نت يصعد الآن للتحدث حول أهمية Cloud Cyber Security! #GO_CLOUD_2 #cloud_security #الحوسبة_السحابية
Faisal Al-Yousef, Cyber Security Manager at Sahara Net talking now about Cloud Cyber Security! #cloud_security #cloud_computing #GO_CLOUD_2
#TrendMicro Acquires #CloudConformity To Strengthen #Cloud_Security Leadership smestreet.in/technology/tre…
Microsoft brings together IT management ... - managedsolution.com/?p=10920 #Azure #Cloud_Security #Hybrid_Cloud
Security as a service on the rise in the #UAE - managedsolution.com/?p=13640 #Cloud_Security #DataControl #ProfessionalServices #SaaS
#Why_Cloud_Security_Is_Essential? #Cloud_Security #Cloud_Security_loophole #Cloud_Infrastructure #Poor_Authentication #Cyber_Security_Provider #Cloud_Data_Retention_Policy #Cloud_Penetration_Testing | @briskinfosec bit.ly/2UXjF41
How can SMBs overcome cloud security fears and passivity?...#ACSM #Emag #cloud_security #cloud_storage #data_security #detect #unauthorized_access #hybrid_storage_environments australiancybersecuritymagazine.com.au/how-can-smbs-o…
Technology Expert & CEO, Sean Ferrel ... - managedsolution.com/?p=11908 #Cloud_Security #Improve_Productivity
Researchers Question Security in AMDs Upcoming Zen Chips #Cloud_Security #Cryptography threatpost.com/researchers-qu… #R…
Google reCaptcha Bypass Technique Uses Googles Own Tools #Cloud_Security #Cryptography threatpost.com/google-recaptc…
Something went wrong.
Something went wrong.
United States Trends
- 1. Marshawn Kneeland 14.3K posts
- 2. Nancy Pelosi 18.1K posts
- 3. #MichaelMovie 25.6K posts
- 4. ESPN Bet 2,038 posts
- 5. #영원한_넘버원캡틴쭝_생일 20K posts
- 6. #NO1ShinesLikeHongjoong 20.2K posts
- 7. Gremlins 3 2,241 posts
- 8. Jaafar 7,749 posts
- 9. Good Thursday 34.7K posts
- 10. Madam Speaker N/A
- 11. #thursdayvibes 2,780 posts
- 12. Chimecho 4,123 posts
- 13. Joe Dante N/A
- 14. Happy Friday Eve N/A
- 15. Penn 9,185 posts
- 16. #BrightStar_THE8Day 30.1K posts
- 17. Baxcalibur 2,982 posts
- 18. Barstool 1,541 posts
- 19. Chris Columbus 2,074 posts
- 20. Votar No 27.3K posts