This site uses cookies to improve your experience. By viewing our content, you are accepting the use of cookies. To help us insure we adhere to various privacy regulations, please select your country/region of residence. If you do not select a country we will assume you are from the United States. View our privacy policy and terms of use.

Remove author mark-lambert
article thumbnail

Abusing Azure Container Registry Tasks

Security Boulevard

APRIL 20, 2022

This concept of chaining disparate, seemingly low-risk and unrelated configurations into devastating attack paths is elegantly summarized by John Lambert: ?—? This tells Azure that the task runner is authorized to authenticate to Azure services as that service principal, without needing to provide a credential. The Execution.

Authentication 67
Authentication Risk Passwords Accountability 67
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

 

Stay Connected

Join 29,000+ Insiders by signing up for our newsletter

About
About
Editions
Editions
Topics
Powered by Aggregage | Terms and Conditions | Your California Rights and Privacy Policy
© Aggregage 2024