gitea-mirror/hacktricks-cloud
1
0
Fork 0
mirror of https://github.com/HackTricks-wiki/hacktricks-cloud.git synced 2026-04-28 03:53:07 -07:00
Code Issues Packages Projects Releases Wiki Activity
960 Commits 21 Branches 17 Tags
master
Commit Graph

960 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
SirBroccoli
c27dd45393 Merge pull request #283 from HackTricks-wiki/update_The_npm_Threat_Landscape__Attack_Surface_and_Mitig_20260425_021054 
The npm Threat Landscape Attack Surface and Mitigations
 2026-04-28 01:25:02 +02:00
SirBroccoli
627ae260b8 Merge pull request #277 from HackTricks-wiki/update_Cracks_in_the_Bedrock__Escaping_the_AWS_AgentCore__20260408_020957 
Cracks in the Bedrock Escaping the AWS AgentCore Sandbox
 2026-04-28 01:23:06 +02:00
HackTricks News Bot
7ca12b41ef Add content from: The npm Threat Landscape: Attack Surface and Mitigations 2026-04-25 02:14:06 +00:00
SirBroccoli
979375b432 Merge pull request #280 from Local-Guy-123/local-guy-ssm-update-doc-privesc-persist 
arte-Hex-Editor
 2026-04-21 10:19:44 +02:00
SirBroccoli
c7d8d96af8 Merge pull request #281 from jFriedli/arte-jfriedli-aws-bedrock-lambda-privesc 
AWS Bedrock: Add Lambda Tool Hijacking Privilege Escalation (Agent Action Groups)
 2026-04-21 10:18:55 +02:00
Jonas Friedli
cda5427488 add some corrections 2026-04-21 08:56:09 +02:00
Jonas Friedli
6cdf2b2e14 Add Bedrock agent Lambda tool hijacking privilege escalation technique 2026-04-21 08:42:31 +02:00
Local-Guy-123
2008a8e33e Adding 2 additional SSM PrivEsc and Persistence Paths 2026-04-20 21:03:08 -04:00
Carlos Polop
913bcb0f09 f 2026-04-19 12:54:23 +02:00
Carlos Polop
889c2aab05 f 2026-04-13 20:01:42 +02:00
Carlos Polop
05c82f4398 Restore 4/5 BSA, 1/5 legacy ad split 2026-04-08 19:06:44 +02:00
Carlos Polop
28ce890dde Temp: BSA ads 5/5 times for verification 2026-04-08 16:51:11 +02:00
HackTricks News Bot
f0d0e56d5a Add content from: Cracks in the Bedrock: Escaping the AWS AgentCore Sandbox 2026-04-08 02:16:50 +00:00
SirBroccoli
36d8f39a65 Merge pull request #274 from HackTricks-wiki/update_When_an_Attacker_Meets_a_Group_of_Agents__Navigati_20260404_020203 
When an Attacker Meets a Group of Agents Navigating Amazon B...
 2026-04-07 17:20:05 +02:00
Carlos Polop
57bd71e076 f 2026-04-07 15:45:46 +02:00
SirBroccoli
10e13b14bd Merge pull request #276 from HackTricks-wiki/pr-271 
Expand GitHub Actions cache poisoning docs with Angular 2026 + Cacheract demo
 2026-04-07 14:59:12 +02:00
Carlos Polop
d5a2d0c59a f 2026-04-07 14:57:48 +02:00
SirBroccoli
cccacb7ee1 Merge pull request #271 from HackTricks-wiki/update_Double_Agents__Exposing_Security_Blind_Spots_in_GC_20260331_131528 
Double Agents Exposing Security Blind Spots in GCP Vertex AI
 2026-04-07 14:27:51 +02:00
Carlos Polop
6b2c22a0f3 Normalize Vertex AI docs to enum/privesc/post-exploitation structure 2026-04-07 14:24:55 +02:00
SirBroccoli
941e8d69e6 Merge pull request #272 from HackTricks-wiki/update_Weaponizing_the_Protectors__TeamPCP_s_Multi-Stage__20260401_021730 
Weaponizing the Protectors TeamPCP’s Multi-Stage Supply Chai...
 2026-04-07 14:24:20 +02:00
HackTricks News Bot
9be9471b07 Add content from: When an Attacker Meets a Group of Agents: Navigating Amazon ... 2026-04-04 02:05:33 +00:00
SirBroccoli
55277879e8 Merge pull request #273 from thomaspreece/master 
Add new CodeBuild credential leakage technique
 2026-04-01 14:33:12 +02:00
Thomas Preece
a0ce4e47be Add new CodeBuild Credential leakage technique 2026-04-01 08:01:37 +01:00
HackTricks News Bot
9fe9a78f57 Add content from: Weaponizing the Protectors: TeamPCP’s Multi-Stage Supply Cha... 2026-04-01 02:22:22 +00:00
SirBroccoli
06110601f6 Merge pull request #269 from HackTricks-wiki/update_Full_Disclosure__A_Third__and_Fourth__Azure_Sign-I_20260319_185745 
Full Disclosure A Third (and Fourth) Azure Sign-In Log Bypas...
 2026-03-31 18:46:42 +02:00
SirBroccoli
0172f076fc Merge pull request #270 from thug-gamer/patch-1 
fix saml_forge.py script; fix typo
 2026-03-31 18:36:55 +02:00
HackTricks News Bot
f69b96a436 Add content from: Double Agents: Exposing Security Blind Spots in GCP Vertex A... 2026-03-31 13:21:35 +00:00
thug-gamer
5abaa4136c arte-leobalt - fix saml_forge.py script; fix typo 2026-03-31 11:36:49 +02:00
HackTricks News Bot
34568ac762 Add content from: Full Disclosure: A Third (and Fourth) Azure Sign-In Log Bypa... 2026-03-19 19:03:11 +00:00
Carlos Polop
31812d3f9d f 2026-03-17 21:13:33 +01:00
Carlos Polop
9cee22441f f 2026-03-17 20:07:35 +01:00
SirBroccoli
126ea6644d Merge pull request #266 from HackTricks-wiki/update_How_to_detect_and_respond_to_OAuth_consent_attacks_20260304_184649 
How to detect and respond to OAuth consent attacks in Google...
 2026-03-17 19:42:55 +01:00
SirBroccoli
2bd82aa2a5 Merge pull request #267 from bka-dev/master 
Update README.md
 2026-03-17 19:42:23 +01:00
Bastian Kanbach
61f7d2a71b Update README.md 
Updated URL of TeamsEnum Repository
 2026-03-16 16:34:57 +01:00
Carlos Polop
8161b74c38 Set social preview logo for cloud book 2026-03-12 00:52:01 +01:00
Carlos Polop
dc3df85e47 Add automatic social and structured SEO tags 2026-03-12 00:19:09 +01:00
Carlos Polop
48514dbd94 Fix cloud searchindex retry working directory 2026-03-11 21:58:12 +01:00
Carlos Polop
67584e84e5 Trigger deploys for workflow and SEO script changes 2026-03-11 21:35:32 +01:00
Carlos Polop
234bd83229 Invalidate SEO deploys and fix translation script path 2026-03-11 21:34:12 +01:00
Carlos Polop
6a9b95fe96 Add SEO post-processing for cloud wiki 2026-03-11 21:25:52 +01:00
Carlos Polop
40b954c021 f 2026-03-09 16:08:21 +01:00
HackTricks News Bot
028c5718bb Add content from: How to detect and respond to OAuth consent attacks in Google... 2026-03-04 18:49:07 +00:00
Carlos Polop
9e39e77d6e f 2026-03-04 12:21:21 +01:00
Carlos Polop
53d29a8805 Merge branch 'add-ad-entra-pivot-techniques' into master 2026-03-03 18:55:26 +01:00
Carlos Polop
36ea0d12e4 f 2026-03-03 18:53:49 +01:00
SirBroccoli
99f3c09476 Merge pull request #264 from HackTricks-wiki/update_ChatGPT_in_your_inbox__Investigating_Entra_apps_th_20260224_144948 
ChatGPT in your inbox? Investigating Entra apps that request...
 2026-03-03 16:32:28 +01:00
SirBroccoli
92afcc419d Update SUMMARY.md 2026-03-03 16:32:15 +01:00
SirBroccoli
889e0a9a69 Merge pull request #265 from HackTricks-wiki/add-ad-entra-pivot-techniques 
Add AD-to-Entra pivot techniques (Connect Sync policy abuse, Exchange Hybrid)
 2026-03-03 00:50:42 +01:00
Carlos Polop
8148555ca5 Remove outdated Connect Sync Policy Abuse technique 2026-03-03 00:49:59 +01:00
Carlos Polop
9bb45f07b4 Refine hybrid pivot docs with current exploitability status 2026-03-03 00:30:14 +01:00