企业上云的新攻击面分析 | CTF导航
Tags
Common Information
| Type | Value |
|---|---|
| UUID | 8eb25b7e-abb5-428e-b45c-2e60975af3f8 |
| Fingerprint | ea106a5d9e483e0d |
| Analysis status | DONE |
| Considered CTI value | -2 |
| Text language | |
| Published | Dec. 24, 2018, midnight |
| Added to db | Dec. 18, 2024, 2:14 p.m. |
| Last updated | Dec. 18, 2024, 11:50 p.m. |
| Headline | 企业上云的新攻击面分析 |
| Title | 企业上云的新攻击面分析 | CTF导航 |
| Detected Hints/Tags/Attributes | 55/1/175 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://www.ctfiot.com/220551.html |
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 426 | ✔ | CTF导航 | https://www.ctfiot.com/feed | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | CVE | 3 | cve-2022-30137 |
|
| Details | CVE | 1 | cve-2022-29527 |
|
| Details | CVE | 17 | cve-2021-38647 |
|
| Details | CVE | 1 | cve-2021-38112 |
|
| Details | CVE | 13 | cve-2023-23383 |
|
| Details | Domain | 64 | cloud.google.com |
|
| Details | Domain | 20 | www.wiz.io |
|
| Details | Domain | 1 | blog.lightspin.io |
|
| Details | Domain | 4 | orca.security |
|
| Details | Domain | 1 | onecloudplease.com |
|
| Details | Domain | 49 | docs.aws.amazon.com |
|
| Details | Domain | 4 | securitylabs.datadoghq.com |
|
| Details | Domain | 249 | unit42.paloaltonetworks.com |
|
| Details | Domain | 4370 | github.com |
|
| Details | Domain | 3 | launch.sh |
|
| Details | Domain | 8 | rhinosecuritylabs.com |
|
| Details | Domain | 1 | blog.stazot.com |
|
| Details | Domain | 2 | www.cloudvulndb.org |
|
| Details | Domain | 1 | ssh.cloud.google.com |
|
| Details | Domain | 12 | www.netspi.com |
|
| Details | Domain | 63 | java.net |
|
| Details | Domain | 6 | metadata.google |
|
| Details | Domain | 1 | metadata.tencentyun.com |
|
| Details | Domain | 1 | execute-api.eu-central-1.amazonaws.com |
|
| Details | Domain | 2 | blog.s1r1us.ninja |
|
| Details | Domain | 1 | random-id.notebooks.googleusercontent.com |
|
| Details | Domain | 1 | dot-us-west1.notebooks.googleusercontent.com |
|
| Details | Domain | 9 | publicsuffix.org |
|
| Details | Domain | 1 | support.huaweicloud.com |
|
| Details | Domain | 1 | andresriancho.com |
|
| Details | Domain | 3 | cognito-identity.amazonaws.com |
|
| Details | Domain | 10 | www.aquasec.com |
|
| Details | Domain | 1 | frichetten.com |
|
| Details | Domain | 73 | www.tenable.com |
|
| Details | Domain | 467 | medium.com |
|
| Details | Domain | 36 | www.legitsecurity.com |
|
| Details | Domain | 40 | www.paloaltonetworks.com |
|
| Details | Domain | 13 | www.praetorian.com |
|
| Details | Domain | 149 | research.checkpoint.com |
|
| Details | Domain | 3 | hackingthe.cloud |
|
| Details | Domain | 1 | cloudsecwiki.com |
|
| Details | Domain | 225 | www.blackhat.com |
|
| Details | Domain | 2 | notsosecure.com |
|
| Details | Domain | 2 | blog.appsecco.com |
|
| Details | Domain | 28 | sysdig.com |
|
| Details | Domain | 1 | www.pentagrid.ch |
|
| Details | Domain | 1 | blog.polybdenum.com |
|
| Details | Domain | 14 | dirkjanm.io |
|
| Details | Domain | 30 | www.cyberark.com |
|
| Details | Domain | 151 | www.securityweek.com |
|
| Details | Domain | 1 | cloudsecdocs.com |
|
| Details | Domain | 3 | cloud.hacktricks.xyz |
|
| Details | Domain | 3 | blog.christophetd.fr |
|
| Details | Domain | 16 | intezer.com |
|
| Details | Domain | 1 | www.panoptica.app |
|
| Details | Domain | 1 | kmcquade.com |
|
| Details | Domain | 1 | insecurity.blog |
|
| Details | Domain | 1 | summitroute.com |
|
| Details | Domain | 2 | labs.detectify.com |
|
| Details | Domain | 1 | engineering.sada.com |
|
| Details | Domain | 6 | media.defcon.org |
|
| Details | Domain | 2 | wiki.teamssix.com |
|
| Details | 2 | medium.com/@alex.birsan |
||
| Details | File | 1 | dropping-shell-in.html |
|
| Details | File | 1 | confused-deputy.html |
|
| Details | File | 5 | securitylabs.dat |
|
| Details | File | 26 | log.inf |
|
| Details | File | 7 | os.chm |
|
| Details | File | 1 | 利用__init__.py |
|
| Details | File | 1 | some_python_file.py |
|
| Details | File | 1 | 会自动寻找并执行__init__.py |
|
| Details | File | 1 | 将恶意代码写在项目的__init__.py |
|
| Details | File | 68 | __init__.py |
|
| Details | File | 35 | net.url |
|
| Details | File | 391 | console.log |
|
| Details | File | 2 | public_suffix_list.dat |
|
| Details | File | 1 | obs_40_0001.html |
|
| Details | File | 1 | authentication-flow.html |
|
| Details | File | 869 | index.html |
|
| Details | File | 1 | archives.html |
|
| Details | Github username | 1 | p3gleg |
|
| Details | Github username | 22 | advisories |
|
| Details | Github username | 2 | palantir |
|
| Details | IPv4 | 95 | 169.254.169.254 |
|
| Details | IPv4 | 1 | 100.100.100.200 |
|
| Details | IPv4 | 9 | 168.63.129.16 |
|
| Details | IPv4 | 8 | 169.254.170.2 |
|
| Details | Url | 1 | https://cloud.google.com/learn/paas-vs-iaas-vs-saas |
|
| Details | Url | 1 | https://www.wiz.io/blog/wiz-research-discovers-extrareplica-cross-account-database-vulnerability-in-azure-postgresql |
|
| Details | Url | 1 | https://www.wiz.io/blog/the-cloud-has-an-isolation-problem-postgresql-vulnerabilities |
|
| Details | Url | 1 | https://www.wiz.io/blog/brokensesame-accidental-write-permissions-to-private-registry-allowed-potential-r |
|
| Details | Url | 1 | https://www.wiz.io/blog/hells-keychain-supply-chain-attack-in-ibm-cloud-databases-for-postgresql |
|
| Details | Url | 1 | https://blog.lightspin.io/aws-rds-critical-security-vulnerability |
|
| Details | Url | 1 | https://www.wiz.io/blog/the-cloud-has-an-isolation-problem-postgresql-vulnerabilities、https://www.ezequiel.tech/2020/08/dropping-shell-in.html、https://www.dig.security/post/gcp-cloudsql-vulnerability-leads-to-internal-container-access-and-data-exposure |
|
| Details | Url | 1 | https://news.ycombinator.com/item?id=36086858 |
|
| Details | Url | 1 | https://www.wiz.io/blog/chaosdb-explained-azures-cosmos-db-vulnerability-walkthrough |
|
| Details | Url | 1 | https://hencohen10.medium.com/i-own-your-cloud-shell-taking-over-azure-cloud-shell-kubernetes-cluster-through-unsecured-558621519cf9 |
|
| Details | Url | 1 | https://orca.security/resources/blog/aws-glue-vulnerability |
|
| Details | Url | 1 | https://orca.security/resources/blog/breakingformation-technical-vulnerability-walkthrough |
|
| Details | Url | 1 | https://onecloudplease.com/blog/security-september-cataclysms-in-the-cloud-formations |
|
| Details | Url | 1 | https://www.wiz.io/blog/attachme-oracle-cloud-vulnerability-allows-unauthorized-cross-tenant-volume-access |
|
| Details | Url | 1 | https://docs.aws.amazon.com/iam/latest/userguide/confused-deputy.html |
|
| Details | Url | 1 | https://securitylabs.datadoghq.com/articles/appsync-vulnerability-disclosure |
|
| Details | Url | 1 | https://blog.lightspin.io/aws-ecr-public-vulnerability |
|
| Details | Url | 2 | https://medium.com/@alex.birsan/dependency-confusion-4a5d60fec610 |
|
| Details | Url | 1 | https://www.tenable.com/blog/cloudimposer-executing-code-on-millions-of-google-servers-with-a-single-malicious-package |
|
| Details | Url | 1 | https://unit42.paloaltonetworks.com/azure-serverless-functions-security |
|
| Details | Url | 1 | https://github.com/p3gleg/whaler |
|
| Details | Url | 2 | https://unit42.paloaltonetworks.com/fabricscape-cve-2022-30137 |
|
| Details | Url | 1 | https://github.com/advisories/ghsa-87pw-p9qx-p46w |
|
| Details | Url | 2 | https://www.wiz.io/blog/secret-agent-exposes-azure-customers-to-unauthorized-code-execution |
|
| Details | Url | 1 | https://rhinosecuritylabs.com/aws/cve-2021-38112-aws-workspaces-rce |
|
| Details | Url | 1 | https://blog.stazot.com/ssh-key-injection-google-cloud |
|
| Details | Url | 1 | https://www.panoptica.app/research/azure-cloud-shell-command-injection-stealing-users-access-tokens |
|
| Details | Url | 2 | https://orca.security/resources/blog/super-fabrixss-azure-vulnerability |
|
| Details | Url | 1 | https://www.cloudvulndb.org/gcp-cloudshell-bugs |
|
| Details | Url | 1 | https://ssh.cloud.google.com/cloudshell/editor?cloudshell_git_repo=http://path-to-repo/sample.git |
|
| Details | Url | 1 | https://github.com/palantir/python-language-server |
|
| Details | Url | 1 | https://ssh.cloud.google.com/cloudshell/editor?cloudshell_git_repo=https://github/evil.git&open_in_editor=__init__.py |
|
| Details | Url | 1 | https://rhinosecuritylabs.com/aws/escalating-aws-iam-privileges-undocumented-codestar-api |
|
| Details | Url | 1 | https://www.netspi.com/blog/technical-blog/cloud-penetration-testing/azure-function-apps |
|
| Details | Url | 1 | https://www.tenable.com/blog/confusedfunction-a-privilege-escalation-vulnerability-impacting-gcp-cloud-functions |
|
| Details | Url | 11 | http://169.254.169.254 |
|
| Details | Url | 1 | http://metadata.google.internal |
|
| Details | Url | 1 | http://100.100.100.200 |
|
| Details | Url | 1 | http://metadata.tencentyun.com |
|
| Details | Url | 1 | https://blog.s1r1us.ninja/research/cookie-tossing-to-rce-on-google-cloud-jupyter-notebooks |
|
| Details | Url | 1 | https://attacker(randomid)-dot-us-west1.notebooks.googleusercontent.com |
|
| Details | Url | 1 | https://victim(randomid)-dot-us-west1.notebooks.googleusercontent.com/lab?authuser=1 |
|
| Details | Url | 1 | https://support.huaweicloud.com/perms-cfg-obs/obs_40_0001.html |
|
| Details | Url | 1 | https://www.blackhat.com/us-24/briefings/schedule/#breaching |
|
| Details | Url | 1 | https://andresriancho.com/internet-scale-analysis-of-aws-cognito-security |
|
| Details | Url | 1 | https://securitylabs.datadoghq.com/articles/amplified-exposure-how-aws-flaws-made-amplify-iam-roles-vulnerable-to-takeover |
|
| Details | Url | 1 | https://docs.aws.amazon.com/cognito/latest/developerguide/authentication-flow.html |
|
| Details | Url | 1 | https://aws.amazon.com/cn/blogs/security/defense-in-depth-open-firewalls-reverse-proxies-ssrf-vulnerabilities-ec2-instance-metadata-service |
|
| Details | Url | 1 | https://www.cloudvulndb.org |
|
| Details | Url | 1 | https://www.wiz.io/blog |
|
| Details | Url | 1 | https://www.aquasec.com/blog |
|
| Details | Url | 1 | https://frichetten.com/blog |
|
| Details | Url | 1 | https://www.tenable.com/blog |
|
| Details | Url | 1 | https://medium.com/tenable-techblog |
|
| Details | Url | 1 | https://rhinosecuritylabs.com/blog |
|
| Details | Url | 1 | https://www.legitsecurity.com/blog |
|
| Details | Url | 1 | https://www.netspi.com/blog/technical-blog |
|
| Details | Url | 1 | https://www.paloaltonetworks.com/prisma/cloud/research |
|
| Details | Url | 1 | https://orca.security/resources/blog |
|
| Details | Url | 1 | https://unit42.paloaltonetworks.com/category/threat-research |
|
| Details | Url | 1 | https://www.praetorian.com/blog |
|
| Details | Url | 1 | https://securitylabs.datadoghq.com/articles |
|
| Details | Url | 11 | https://research.checkpoint.com |
|
| Details | Url | 1 | https://hackingthe.cloud |
|
| Details | Url | 1 | https://cloudsecwiki.com/index.html |
|
| Details | Url | 1 | https://www.blackhat.com/html/archives.html |
|
| Details | Url | 1 | https://notsosecure.com/blog |
|
| Details | Url | 1 | https://onecloudplease.com/blog |
|
| Details | Url | 1 | https://blog.appsecco.com |
|
| Details | Url | 1 | https://medium.com/cloud-security |
|
| Details | Url | 1 | https://sysdig.com/blog |
|
| Details | Url | 1 | https://www.pentagrid.ch/en/blog |
|
| Details | Url | 1 | https://blog.polybdenum.com |
|
| Details | Url | 2 | https://dirkjanm.io |
|
| Details | Url | 1 | https://www.cyberark.com/resources |
|
| Details | Url | 1 | https://www.securityweek.com/category/cloud-security |
|
| Details | Url | 1 | https://cloudsecdocs.com |
|
| Details | Url | 1 | https://cloud.hacktricks.xyz |
|
| Details | Url | 1 | https://blog.christophetd.fr |
|
| Details | Url | 1 | https://intezer.com/blog/research |
|
| Details | Url | 1 | https://www.panoptica.app/blog |
|
| Details | Url | 1 | https://kmcquade.com |
|
| Details | Url | 1 | https://insecurity.blog |
|
| Details | Url | 1 | https://summitroute.com/blog |
|
| Details | Url | 1 | https://labs.detectify.com/category/writeups |
|
| Details | Url | 1 | https://engineering.sada.com |
|
| Details | Url | 1 | https://media.defcon.org |
|
| Details | Url | 1 | https://wiki.teamssix.com |