Amazon Cognito is a powerful tool that enables developers to handle user authentication, authorization, and user management in web and mobile applications. With its support for various authentication providers such as Google, Facebook, and Amazon, it simplifies the process of managing user identities. However, if not configured properly, it can lead to security vulnerabilities. In...
In this blog, we will look at a variation of a real-world attack path to escalate our privileges from a compromised Application Administrator account in Azure to Global admin through a service principal. Before diving into the attack’s details, let us understand some Azure basics to help us further down the path. What is Azure?...
What is Amazon S3? Excerpt from AWS documentation: Amazon Simple Storage Service (Amazon S3) is an object storage service offering industry-leading scalability, data availability, security, and performance. Customers of all sizes and industries can store and protect any amount of data for virtually any use case, such as data lakes, cloud-native applications, and mobile apps....
