Discover and read the best of Twitter Threads about #CloudShell

Most recents (3)

#BlackBird
¿Herramienta #OSINT para buscar cuentas por nombre en 574 websites en #GoogleCloudShell?
🕵️‍♂️💻🌐

#OSINT tool to search accounts by name on 574 websites in #GoogleCloudShell?

#VideoOsint #cybersecurity #ToolsOsint #SOCMINT #hacking
🐦@p1ngul1n0

🧵HILO🧵
La herramienta #Osint que usaremos #BlackBird

Enlace de la herramienta: github.com/p1ngul1n0/blac…

1/1
Clonamos el repositorio #Blackbird en nuestro terminal en #GoogleCloudShell.

Enlace GoogleCloudShell: shell.cloud.google.com/?fromcloudshel…

Clonar o copiar nuestro repositorio:
git clone github.com/p1ngul1n0/blac…

2/2
Read 10 tweets
A raíz de todos los #VideosOsint que eh realizado (sobre la ejecución y uso de #ToolsOsint) ejecutados en #GoogleCloudShell (entorno gratuito que proporciona acceso a recursos durante el desarrollo de la nube); es que abriré Hilo, explicando un poco sobre esta shell.

🧵HILO 🧵
#GoogleCloudShell es un entorno en línea basado en Debian, con las siguientes características:
- 1,7 GB de memoria de acceso aleatorio.
- 5 GB de almacenamiento en disco persistente gratuito.
- Entorno volátil (Durante inactividad de sesión de 20 minutos).
1/1
Read 12 tweets
How a simple web-app assessment lead to complete #AzureAd tenant takeover 🤯
🧵 👇
#Azure #AzureKubernetesService #aks #Kubernetes #KubernetesSecurity #k8s #bugbounty #bugbountytips #bugbountytip #DevSecOps
1. Poorly-designed file upload functionality lead to RCE
2. Turned out the app was running in a container managed by #AzureKubernetesService (#AKS)
3. #Container was mounting a service account with permissions to deploy #pods in the same namespace
4. I deployed a new pod with hostPath root volume. Deployment was not blocked by any security policy. #Pod got deployed
5. I exec-ed into the pod's #container and escaped it through its hostPath volume. #privesc to the #AKS node succeeded!
Read 7 tweets

Related hashtags

Did Thread Reader help you today?

Support us! We are indie developers!


This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!