Cloud Threat Landscape

Incidents
Actors
Techniques
Defenses
Periodic Table
Tools
Targeted Technologies
About
RSS
STIX
Back to wiz.io

Cloud Threat Landscape

Cloud Configuration Scanning

Type

Configuration Scanning

D3FEND Tactic

Platform Hardening (D3-PH)

TL;DR

Scans cloud setups for compliance and security best practices.

Description

The process of continuously scanning cloud environments to ensure that configurations adhere to security best practices and compliance requirements.

Techniques

Abuse of cross-job access in CI/CD system Propagation via Kubelet Public exposure abuse K8s anonymous auth abuse Azure Arc abuse Azure Run Commands abuse Azure Batch abuse Azure AD abuse Appstream abuse

Made with 💙 by Wiz

Last Updated: June 25, 2024