gitea-mirror/hacktricks-cloud
1
0
Fork 0
mirror of https://github.com/HackTricks-wiki/hacktricks-cloud.git synced 2026-06-12 19:11:44 -07:00
Code Issues Packages Projects Releases Wiki Activity
986 Commits 21 Branches 17 Tags
51f602b871824a6e3270aa6ecb01f7496b189417
Commit Graph

611 Commits

Author SHA1 Message Date
Jimmy 51f602b871 a 2026-05-18 17:10:42 +02:00
SirBroccoli d13c270d7f Merge pull request #286 from JaimePolop/master 
Add WireServer & GoalState
 2026-05-05 18:18:44 +02:00
Carlos Polop 2fe01e873a Mention WireServer MI selector fallback 2026-05-05 17:50:24 +02:00
Carlos Polop 2a4cc7c428 Document Azure MI token discovery limits 2026-05-05 17:45:43 +02:00
Carlos Polop 406b2549aa Replace brittle managed identity enumeration examples 2026-05-05 16:27:01 +02:00
Carlos Polop 393c6997b1 Clarify Azure WireServer access contexts 2026-05-05 16:16:00 +02:00
SirBroccoli 2f2df45366 Update README.md 2026-05-05 15:31:53 +02:00
SirBroccoli 28a5f23cd9 Merge pull request #279 from HackTricks-wiki/update_IAM_the_Captain_Now___Hijacking_Azure_Identity_Acc_20260409_132358 
IAM the Captain Now – Hijacking Azure Identity Access
 2026-05-05 15:17:16 +02:00
Jimmy 6f461640c2 Add WireServer & GoalState 2026-05-05 14:33:29 +02:00
Jimmy b0cd651c8d Add WireServer & GoalState 2026-05-05 14:25:14 +02:00
SirBroccoli a80e28427b Merge pull request #285 from ZoneMix/master 
Update User Password Addition
 2026-05-03 10:45:20 +02:00
SirBroccoli 7f789f1bc1 Merge pull request #284 from 0x1347/arte-veue 
arte-veue
 2026-05-03 10:44:53 +02:00
ZoneMix cee4c97967 Update user password update privilege escalation technique 2026-05-02 17:05:49 -05:00
Carlos Polop 6447449ade Merge branch 'master' of github.com:HackTricks-wiki/hacktricks-cloud 2026-04-30 21:29:49 +02:00
Carlos Polop bc899d4b0b f 2026-04-30 21:29:35 +02:00
SirBroccoli c27dd45393 Merge pull request #283 from HackTricks-wiki/update_The_npm_Threat_Landscape__Attack_Surface_and_Mitig_20260425_021054 
The npm Threat Landscape Attack Surface and Mitigations
 2026-04-28 01:25:02 +02:00
SirBroccoli 627ae260b8 Merge pull request #277 from HackTricks-wiki/update_Cracks_in_the_Bedrock__Escaping_the_AWS_AgentCore__20260408_020957 
Cracks in the Bedrock Escaping the AWS AgentCore Sandbox
 2026-04-28 01:23:06 +02:00
0x1337 2e66838b27 arte-veue 2026-04-28 00:10:52 +02:00
HackTricks News Bot 7ca12b41ef Add content from: The npm Threat Landscape: Attack Surface and Mitigations 2026-04-25 02:14:06 +00:00
SirBroccoli 979375b432 Merge pull request #280 from Local-Guy-123/local-guy-ssm-update-doc-privesc-persist 
arte-Hex-Editor
 2026-04-21 10:19:44 +02:00
Jonas Friedli cda5427488 add some corrections 2026-04-21 08:56:09 +02:00
Jonas Friedli 6cdf2b2e14 Add Bedrock agent Lambda tool hijacking privilege escalation technique 2026-04-21 08:42:31 +02:00
Local-Guy-123 2008a8e33e Adding 2 additional SSM PrivEsc and Persistence Paths 2026-04-20 21:03:08 -04:00
HackTricks News Bot 8d313ae50b Add content from: IAM the Captain Now – Hijacking Azure Identity Access 2026-04-09 13:37:19 +00:00
HackTricks News Bot f0d0e56d5a Add content from: Cracks in the Bedrock: Escaping the AWS AgentCore Sandbox 2026-04-08 02:16:50 +00:00
SirBroccoli 36d8f39a65 Merge pull request #274 from HackTricks-wiki/update_When_an_Attacker_Meets_a_Group_of_Agents__Navigati_20260404_020203 
When an Attacker Meets a Group of Agents Navigating Amazon B...
 2026-04-07 17:20:05 +02:00
SirBroccoli 10e13b14bd Merge pull request #276 from HackTricks-wiki/pr-271 
Expand GitHub Actions cache poisoning docs with Angular 2026 + Cacheract demo
 2026-04-07 14:59:12 +02:00
Carlos Polop d5a2d0c59a f 2026-04-07 14:57:48 +02:00
SirBroccoli cccacb7ee1 Merge pull request #271 from HackTricks-wiki/update_Double_Agents__Exposing_Security_Blind_Spots_in_GC_20260331_131528 
Double Agents Exposing Security Blind Spots in GCP Vertex AI
 2026-04-07 14:27:51 +02:00
Carlos Polop 6b2c22a0f3 Normalize Vertex AI docs to enum/privesc/post-exploitation structure 2026-04-07 14:24:55 +02:00
SirBroccoli 941e8d69e6 Merge pull request #272 from HackTricks-wiki/update_Weaponizing_the_Protectors__TeamPCP_s_Multi-Stage__20260401_021730 
Weaponizing the Protectors TeamPCP’s Multi-Stage Supply Chai...
 2026-04-07 14:24:20 +02:00
HackTricks News Bot 9be9471b07 Add content from: When an Attacker Meets a Group of Agents: Navigating Amazon ... 2026-04-04 02:05:33 +00:00
Thomas Preece a0ce4e47be Add new CodeBuild Credential leakage technique 2026-04-01 08:01:37 +01:00
HackTricks News Bot 9fe9a78f57 Add content from: Weaponizing the Protectors: TeamPCP’s Multi-Stage Supply Cha... 2026-04-01 02:22:22 +00:00
SirBroccoli 06110601f6 Merge pull request #269 from HackTricks-wiki/update_Full_Disclosure__A_Third__and_Fourth__Azure_Sign-I_20260319_185745 
Full Disclosure A Third (and Fourth) Azure Sign-In Log Bypas...
 2026-03-31 18:46:42 +02:00
HackTricks News Bot f69b96a436 Add content from: Double Agents: Exposing Security Blind Spots in GCP Vertex A... 2026-03-31 13:21:35 +00:00
thug-gamer 5abaa4136c arte-leobalt - fix saml_forge.py script; fix typo 2026-03-31 11:36:49 +02:00
HackTricks News Bot 34568ac762 Add content from: Full Disclosure: A Third (and Fourth) Azure Sign-In Log Bypa... 2026-03-19 19:03:11 +00:00
SirBroccoli 126ea6644d Merge pull request #266 from HackTricks-wiki/update_How_to_detect_and_respond_to_OAuth_consent_attacks_20260304_184649 
How to detect and respond to OAuth consent attacks in Google...
 2026-03-17 19:42:55 +01:00
Bastian Kanbach 61f7d2a71b Update README.md 
Updated URL of TeamsEnum Repository
 2026-03-16 16:34:57 +01:00
Carlos Polop 6a9b95fe96 Add SEO post-processing for cloud wiki 2026-03-11 21:25:52 +01:00
HackTricks News Bot 028c5718bb Add content from: How to detect and respond to OAuth consent attacks in Google... 2026-03-04 18:49:07 +00:00
Carlos Polop 9e39e77d6e f 2026-03-04 12:21:21 +01:00
Carlos Polop 53d29a8805 Merge branch 'add-ad-entra-pivot-techniques' into master 2026-03-03 18:55:26 +01:00
Carlos Polop 36ea0d12e4 f 2026-03-03 18:53:49 +01:00
SirBroccoli 99f3c09476 Merge pull request #264 from HackTricks-wiki/update_ChatGPT_in_your_inbox__Investigating_Entra_apps_th_20260224_144948 
ChatGPT in your inbox? Investigating Entra apps that request...
 2026-03-03 16:32:28 +01:00
SirBroccoli 92afcc419d Update SUMMARY.md 2026-03-03 16:32:15 +01:00
Carlos Polop 8148555ca5 Remove outdated Connect Sync Policy Abuse technique 2026-03-03 00:49:59 +01:00
Carlos Polop 9bb45f07b4 Refine hybrid pivot docs with current exploitability status 2026-03-03 00:30:14 +01:00
chack 9c61bb2811 Add technical details for AD-to-Entra pivot techniques 2026-03-02 23:24:08 +00:00