Extracting All the Azure Passwords - Karl Fosaaen - Ekoparty 2021: Red Zone Space

Explore the intricacies of extracting passwords from Microsoft Azure cloud environments in this 45-minute conference talk from Ekoparty 2021's Red Zone Space. Delve into the challenges faced by penetration testers when dealing with Azure's expanding attack surfaces. Learn about the MicroBurst toolkit, designed to automate common Azure escalation tasks, with a focus on its password extraction capabilities. Discover various hiding spots for passwords within Azure and techniques for manual extraction. Gain insights into using the Get-AzPasswords function for automated credential extraction from Azure tenants. Examine a case study highlighting a critical issue in Azure's permissions model that led to a Microsoft fix. Benefit from speaker Karl Fosaaen's expertise as Practice Director at NetSPI, with over a decade of computer security consulting experience and significant contributions to Azure security research.

Intro
WHAT'S AN AZURE
AZURE PERMISSIONS OVERVIEW - PRINCIPALS
AZURE PERMISSIONS OVERVIEW - ROLES
MANUAL CREDENTIAL ACCESS
AUTOMATING CREDENTIAL ACCESS
DUMPING PASSWORDS FROM KEY VAULTS
DUMPING PASSWORDS FROM APP SERVICES
DUMPING PASSWORDS FROM AUTOMATION ACCOUNTS
DUMPING PASSWORDS FROM STORAGE ACCOUNTS
DUMPING PASSWORDS FROM AZURE CONTAINER REGISTRIES
DUMPING PASSWORDS FROM CONTAINER REGISTRIES
DUMPING PASSWORDS FROM AZURE KUBERNETES SERVICES
PRIVILEGE ESCALATION IN AZURE