blueteamsecEnglish · 16 天前

Weaponizing Whitelists: An Azure Blob Storage Mythic C2 Profile

1

7

Weaponizing Whitelists: An Azure Blob Storage Mythic C2 Profile

blueteamsecEnglish · 16 天前

1

Weaponizing Whitelists: An Azure Blob Storage Mythic C2 Profile - SpecterOps

Mature enterprises lock down egress but often carve out broad exceptions for trusted cloud services. This post shows how reviewing deployment guides can help identify those exceptions and weaponize them with a new Mythic C2 profile called azureBlob.

Chat

slazer2au@lemmy.world
link
fedilink
English
arrow-up
1·
16 天前
I am absolutely guilty of having a blanket allow rule for Azure.

blueteamsec

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !blueteamsec@infosec.pub

For [Blue|Purple] Teams in Cyber Defence - covering discovery, detection, response, threat intelligence, malware, offensive tradecraft and tooling, deception, reverse engineering etc.

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

23 users / day
127 users / week
309 users / month
935 users / 6 months
226 local subscribers
630 subscribers
2.41K Posts
187 Comments
Modlog

mods:
digicat