Awesome Azure Security
A curated list of awesome Microsoft Azure Security tools, guides, blogs, and other resources.
Contribute
Contributions welcome! Read the contribution guidelines first.
Contents
Tools
Security Assessment Tools
- Azucar: Security auditing tool for Azure environments. Windows only.
- BloodHound: BloodHound uses graph theory to reveal hidden relationships and attack paths in an Active Directory environment that would otherwise be impossible to quickly identify.
- ScoutSuite: Multi-Cloud Security auditing tool.
- StormSpotter: Azure Red Team tool for graphing Azure and Azure Active Directory objects.
Offensive Tools
- MicroBurst: a PowerShell Toolkit for Attacking Azure.
- PowerZure: a PowerShell project created to perform reconnaissance and exploitation of Azure, AzureAD, and the associated resources.
- ROADrecon: a tool for exploring information in Azure AD from both a Red Team and Blue Team perspective.
Infrastructure as Code Scanning Tools
- Checkov: Terraform, Cloudformation and Kubernetes static analysis written in python.
- tfsec: Provides static analysis of your terraform templates to spot potential security issues.
Other Tools
- DumpsterDiver: Tool to search secrets in various filetypes like keys (e.g. AWS Access Key Azure Share Key or SSH keys) or passwords.
Blog Posts
Offensive blog posts
- Attacking Azure Cloud Shell: Leveraging Azure Cloud Shell storage files with subscription contributor permissions to perform cross-account command execution and privilege escalation.
- Nuking all Azure Resource Groups under all Azure Subscriptions: How to abuse Azure Resource hierarchy and tenant-wide god-mode Service Principals to nuke an entire Azure environment.
- Privilege Escalation and Lateral Movement on Azure: some techniques for how a red team can gain a foothold in an Azure environment, escalate their privileges, and move laterally inside Azure infrastructure by using the Azure RBAC module and common Azure misconfigurations.
Defensive blog posts
Training
- Awesome Azure Learning: numerous references for Azure learning, especially for the Azure Certs, Azure Architecture, and any other learning materials e.g. Security topics.
- Azure AZ 500 Study Guide: Study Guide for the Microsoft Azure Security Technologies Exam.
- Azure AZ 500 Labs by Microsoft: Study Guide for the Microsoft Azure Security Technologies Exam.
- Breaking and Pwning Apps and Servers on AWS and Azure: Course content, lab setup instructions and documentation of our very popular Breaking and Pwning Apps and Servers on AWS and Azure hands on training.