Securing Service Principals
How Entra ID App Registrations / Enterprise Applications are comonly misconfigured and can be used by attackers to elevate privileges, access sensitive information and move laterally across Azure tenancies.
Showing only posts by Shaun. Show all posts.
Bitcoin Mnemonics
Methods to memorise your seed phrase
Snotra Kubernetes
Snotra now supports kubernetes!
AxeOS CSRF Vulnerability
Using CSRF Attack to update the Payout Address on BitAxe Bitcoin Miners
Pillaging Data from Private AWS Subnets
Exploiting overly permissive VPC endpoints to exfiltrate data from private AWS subnets
Bruteforcing Bitcoin Seed Phrases
Checking Bitcoin Seed Phrases for transactions and balances
Pwnboxes
Simple method to define and build security testing containers in Podman
Securing Jellyfin
How to secure a Jellyfin media server
Pentesting AWS Enviroments
Attacking AWS Accounts from a black box perspective
New AWS Tag Checks
Using Snotra to Check For Sensitive Tags
page 1 | older articles »