Azure

EmojiDeploy: Smile! Your Azure web service just got RCE’d ._.

Ermetic’s research team discovered a remote code execution vulnerability affecting services such as Function Apps, App Service and Logic Apps on Azure cloud and other cloud sovereigns.

Liv Matan By Liv Matan

A Caveat for Azure VM Public IP Configuration

If you’re not familiar enough with the SKU attribute of the Azure public IP address, you may think you’re configuring VMs as public to the internet... but aren’t.

Lior Zatlavi By Lior Zatlavi

Public Network Access to Azure Resources Is Too Easy to Configure

For some types of Microsoft Azure resources and subnets, it’s extremely easy to configure what is essentially public network access. We describe here some examples and how to reduce such risks.

Lior Zatlavi By Lior Zatlavi

Access Keys: An Unintended Backdoor-by-Design to Azure Storage Accounts Data

The importance of understanding the assignments of Azure resource roles when giving permissions.

Lior Zatlavi By Lior Zatlavi

The ABCs of Azure Identity Governance Tools

The main Azure mechanisms for governing identities and providing access permissions.

Lior Zatlavi By Lior Zatlavi

Deconstructing Azure Access Management using RBAC

The basics of Azure RBAC -- the main mechanism in Azure for granting permissions to resources.

Lior Zatlavi By Lior Zatlavi