Explore advanced attack vectors in Azure environments through this 51-minute conference talk from Security BSides San Francisco. Delve into the implications of Microsoft's integration of Azure IaaS services and Office 365 products into a single ecosystem, which centralizes permissions and roles. Gain insights into core Azure concepts and witness demonstrations of various privilege escalation techniques. Learn how attackers can potentially exploit this centralized structure and understand the security challenges posed by the unified Azure ecosystem.
Overview
Syllabus
BSidesSF 2023 - Advanced Attack Vectors in Azure Environments (Zur Ulianitzky, Bill Ben Haim)
Taught by
Security BSides San Francisco
Related Courses
-
Attack Scenarios Abusing Azure Active Directory
-
An Azure Sphere Security Breakdown
-
Sedating the Watchdog - Abusing Security Products to Bypass Windows Protections
-
Adventures in Azure Privilege Escalation
-
Attacking and Defending the Microsoft Cloud - Office 365 & Azure AD
-
Attacking Storage Services - The Lynchpin of Cloud Services
