PENTESTING AZURE APPLICATIONS

PENTESTING AZURE APPLICATIONS

The Definitive Guide to Testing and Securing Deployments

Book - 2018
Rate this:
Random House, Inc.
A comprehensive guide to penetration testing cloud services deployed with Microsoft Azure, the popular cloud computing service provider used by companies like Warner Brothers and Apple.

Pentesting Azure Applications is a comprehensive guide to penetration testing cloud services deployed in Microsoft Azure, the popular cloud computing service provider used by numerous companies. You'll start by learning how to approach a cloud-focused penetration test and how to obtain the proper permissions to execute it; then, you'll learn to perform reconnaissance on an Azure subscription, gain access to Azure Storage accounts, and dig into Azure's Infrastructure as a Service (IaaS).

You'll also learn how to:

- Uncover weaknesses in virtual machine settings that enable you to acquire passwords, binaries, code, and settings files
- Use PowerShell commands to find IP addresses, administrative users, and resource details
- Find security issues related to multi-factor authentication and management certificates
- Penetrate networks by enumerating firewall rules
- Investigate specialized services like Azure Key Vault, Azure Web Apps, and Azure Automation
- View logs and security events to find out when you've been caught

Packed with sample pentesting scripts, practical advice for completing security assessments, and tips that explain how companies can configure Azure to foil common attacks, Pentesting Azure Applications is a clear overview of how to effectively perform cloud-focused security tests and provide accurate findings and recommendations.

Baker & Taylor
"A comprehensive guide to penetration testing cloud services deployed with Microsoft Azure, the popular cloud computing service provider used by companies like Warner Brothers and Apple. A comprehensive guide to penetration testing cloud services deployed in Microsoft Azure, the popular cloud computing service provider used by numerous companies large and small. You'll learn how to: -Find security issues related to multi-factor authentication and management certificates -Make sense of Azure's services by using PowerShell commands to find IP addresses, administrative users, and firewall rules -Discover security configuration errors that could lead to exploits against Azure storage and keys -Uncover weaknesses in virtual machine settings that enable you to and acquire passwords, binaries, code, and settings files -Penetrate networks by enumerating firewall rules -Investigate specialized services like Azure Key Vault and Azure Websites -Know when you might be caught by viewing logs and security events Packed with real-world examples from the author's experience as a corporate penetration tester, sample scripts from pen-tests and "Defenders Tips" that explain how companies can reduce risk, Pentesting Azure provides a clear overview of how to effectively perform security tests so that you can provide the most accurate assessments possible"--

Baker
& Taylor

""A guide to penetration testing cloud services deployed in Microsoft Azure, the popular cloud computing service provider used by numerous companies"--Provided by publisher"--

Publisher: San Francisco :, No Starch Press,, 2018
ISBN: 9781593278632
1593278632
9781593278649

Opinion

From the critics


Community Activity

Comment

Add a Comment

There are no comments for this title yet.

Age

Add Age Suitability

There are no ages for this title yet.

Summary

Add a Summary

There are no summaries for this title yet.

Notices

Add Notices

There are no notices for this title yet.

Quotes

Add a Quote

There are no quotes for this title yet.

Explore Further

  Loading...

Find it at RCPL

  Loading...
[]
[]
To Top