518 Commits

Author	SHA1	Message	Date
SirBroccoli	d13c270d7f	Merge pull request #286 from JaimePolop/master ... Add WireServer & GoalState	2026-05-05 18:18:44 +02:00
Carlos Polop	2fe01e873a	Mention WireServer MI selector fallback	2026-05-05 17:50:24 +02:00
Carlos Polop	2a4cc7c428	Document Azure MI token discovery limits	2026-05-05 17:45:43 +02:00
Carlos Polop	406b2549aa	Replace brittle managed identity enumeration examples	2026-05-05 16:27:01 +02:00
Carlos Polop	393c6997b1	Clarify Azure WireServer access contexts	2026-05-05 16:16:00 +02:00
SirBroccoli	2f2df45366	Update README.md	2026-05-05 15:31:53 +02:00
SirBroccoli	28a5f23cd9	Merge pull request #279 from HackTricks-wiki/update_IAM_the_Captain_Now___Hijacking_Azure_Identity_Acc_20260409_132358 ... IAM the Captain Now – Hijacking Azure Identity Access	2026-05-05 15:17:16 +02:00
Jimmy	6f461640c2	Add WireServer & GoalState	2026-05-05 14:33:29 +02:00
Jimmy	b0cd651c8d	Add WireServer & GoalState	2026-05-05 14:25:14 +02:00
SirBroccoli	a80e28427b	Merge pull request #285 from ZoneMix/master ... Update User Password Addition	2026-05-03 10:45:20 +02:00
SirBroccoli	7f789f1bc1	Merge pull request #284 from 0x1347/arte-veue ... arte-veue	2026-05-03 10:44:53 +02:00
ZoneMix	cee4c97967	Update user password update privilege escalation technique	2026-05-02 17:05:49 -05:00
SirBroccoli	627ae260b8	Merge pull request #277 from HackTricks-wiki/update_Cracks_in_the_Bedrock__Escaping_the_AWS_AgentCore__20260408_020957 ... Cracks in the Bedrock Escaping the AWS AgentCore Sandbox	2026-04-28 01:23:06 +02:00
0x1337	2e66838b27	arte-veue	2026-04-28 00:10:52 +02:00
SirBroccoli	979375b432	Merge pull request #280 from Local-Guy-123/local-guy-ssm-update-doc-privesc-persist ... arte-Hex-Editor	2026-04-21 10:19:44 +02:00
Jonas Friedli	cda5427488	add some corrections	2026-04-21 08:56:09 +02:00
Jonas Friedli	6cdf2b2e14	Add Bedrock agent Lambda tool hijacking privilege escalation technique	2026-04-21 08:42:31 +02:00
Local-Guy-123	2008a8e33e	Adding 2 additional SSM PrivEsc and Persistence Paths	2026-04-20 21:03:08 -04:00
HackTricks News Bot	8d313ae50b	Add content from: IAM the Captain Now – Hijacking Azure Identity Access	2026-04-09 13:37:19 +00:00
HackTricks News Bot	f0d0e56d5a	Add content from: Cracks in the Bedrock: Escaping the AWS AgentCore Sandbox	2026-04-08 02:16:50 +00:00
SirBroccoli	36d8f39a65	Merge pull request #274 from HackTricks-wiki/update_When_an_Attacker_Meets_a_Group_of_Agents__Navigati_20260404_020203 ... When an Attacker Meets a Group of Agents Navigating Amazon B...	2026-04-07 17:20:05 +02:00
SirBroccoli	cccacb7ee1	Merge pull request #271 from HackTricks-wiki/update_Double_Agents__Exposing_Security_Blind_Spots_in_GC_20260331_131528 ... Double Agents Exposing Security Blind Spots in GCP Vertex AI	2026-04-07 14:27:51 +02:00
Carlos Polop	6b2c22a0f3	Normalize Vertex AI docs to enum/privesc/post-exploitation structure	2026-04-07 14:24:55 +02:00
HackTricks News Bot	9be9471b07	Add content from: When an Attacker Meets a Group of Agents: Navigating Amazon ...	2026-04-04 02:05:33 +00:00
Thomas Preece	a0ce4e47be	Add new CodeBuild Credential leakage technique	2026-04-01 08:01:37 +01:00
SirBroccoli	06110601f6	Merge pull request #269 from HackTricks-wiki/update_Full_Disclosure__A_Third__and_Fourth__Azure_Sign-I_20260319_185745 ... Full Disclosure A Third (and Fourth) Azure Sign-In Log Bypas...	2026-03-31 18:46:42 +02:00
HackTricks News Bot	f69b96a436	Add content from: Double Agents: Exposing Security Blind Spots in GCP Vertex A...	2026-03-31 13:21:35 +00:00
thug-gamer	5abaa4136c	arte-leobalt - fix saml_forge.py script; fix typo	2026-03-31 11:36:49 +02:00
HackTricks News Bot	34568ac762	Add content from: Full Disclosure: A Third (and Fourth) Azure Sign-In Log Bypa...	2026-03-19 19:03:11 +00:00
SirBroccoli	126ea6644d	Merge pull request #266 from HackTricks-wiki/update_How_to_detect_and_respond_to_OAuth_consent_attacks_20260304_184649 ... How to detect and respond to OAuth consent attacks in Google...	2026-03-17 19:42:55 +01:00
Bastian Kanbach	61f7d2a71b	Update README.md ... Updated URL of TeamsEnum Repository	2026-03-16 16:34:57 +01:00
HackTricks News Bot	028c5718bb	Add content from: How to detect and respond to OAuth consent attacks in Google...	2026-03-04 18:49:07 +00:00
Carlos Polop	9e39e77d6e	f	2026-03-04 12:21:21 +01:00
Carlos Polop	53d29a8805	Merge branch 'add-ad-entra-pivot-techniques' into master	2026-03-03 18:55:26 +01:00
Carlos Polop	36ea0d12e4	f	2026-03-03 18:53:49 +01:00
SirBroccoli	99f3c09476	Merge pull request #264 from HackTricks-wiki/update_ChatGPT_in_your_inbox__Investigating_Entra_apps_th_20260224_144948 ... ChatGPT in your inbox? Investigating Entra apps that request...	2026-03-03 16:32:28 +01:00
Carlos Polop	8148555ca5	Remove outdated Connect Sync Policy Abuse technique	2026-03-03 00:49:59 +01:00
Carlos Polop	9bb45f07b4	Refine hybrid pivot docs with current exploitability status	2026-03-03 00:30:14 +01:00
chack	9c61bb2811	Add technical details for AD-to-Entra pivot techniques	2026-03-02 23:24:08 +00:00
chack	93c2d43192	Add AD to Entra pivot techniques from recent talk	2026-03-02 23:03:22 +00:00
Carlos Polop	9ebb2d956e	f	2026-03-01 21:18:03 +01:00
Carlos Polop	d847f32cc5	f	2026-03-01 20:50:31 +01:00
Carlos Polop	0e45e2e2c7	Merge branch 'master' of github.com:HackTricks-wiki/hacktricks-cloud	2026-02-27 15:07:10 +01:00
Carlos Polop	d95f15f03e	f	2026-02-27 15:07:09 +01:00
HackTricks News Bot	aa12679ea7	Add content from: ChatGPT in your inbox? Investigating Entra apps that request...	2026-02-24 14:49:51 +00:00
Marmeus	17397a0144	Fixed typos	2026-02-23 13:52:13 -05:00
Carlos Polop	202d0fe86c	f robots	2026-02-23 11:53:26 +01:00
SirBroccoli	25552f6898	Merge pull request #260 from Marmeus/patch-1 ... Add command for EC2 console screenshot retrieval	2026-02-23 11:13:53 +01:00
Jaime Polop	a05e50758b	Update gcp-storage-privesc.md	2026-02-23 11:11:37 +01:00
Jaime Polop	0cfe8fc87d	Update README.md	2026-02-20 16:28:54 +01:00