Azure Monitor – Malicious KQL Query
Malicious KQL Query: Malicious KQL query is injection technique, where attacker with targetable workspace resourceID can inject listener of accessLue lisää
Kategoria: Uncategorized
Microsoft Cloud Security Research – Public Disclosure – Gaining Unlimited access to graph AuditLogs endpoint using complex filters with non-privileged user account
Background Not so long a go I was investigating various Azure related portals, and one of them caught my attention.Lue lisää
Add user as reader to Azure Devops projects
Go to https://dev.azure.com/yourOrgHere/_settings/users and use the ’add new users’ Select project readers as group, and access level basic if youLue lisää
First line of defence – Review Azure AD Gaps in Conditional Access with Log Analytics / Azure Sentinel
Backround It is highly recommended especially (at time like this) to ensure, you are not giving easy access to yourLue lisää
SecureCloudBlog 