Join the Hack Smarter community: hacksmarter.org
--- In this video, I work through the "Azure Blob Container to Initial Access" lab by Pwnedlabs.io.
The scenario is that "Mega Big Tech" has adopted a hybrid cloud architecture and continues to use a local on-premise Active Directory domain, as well as the Azure cloud. They are wary of being targeted due to their importance in the tech world, and have asked us to assess the security of their infrastructure, including cloud services. An interesting URL has been found in some public documentation, and we are tasked with assessing it.
In this video, I demonstrate the following:
- Identification & enumeration of an Azure Blob Container
- Leveraging blob previous version functionality to reveal secrets
- Understanding how the full attack chain can be prevented
Enjoy!