Cloud Threat Landscape

Incidents
Actors
Techniques
Defenses
Tools
Targeted Technologies
Posters & Newspapers
About
RSS
STIX
Back to wiz.io

Made with 💙 by Wiz

Last Updated: April 3, 2025

Cloud Threat Landscape

/

/

Cloud Configuration Scanning

Cloud Configuration Scanning

Type

Configuration Scanning

D3FEND Tactic

Platform Hardening (D3-PH)

TL;DR

Scans cloud setups for compliance and security best practices.

Description

The process of continuously scanning cloud environments to ensure that configurations adhere to security best practices and compliance requirements.

Techniques

Abuse of cross-job access in CI/CD system Propagation via Kubelet Public exposure abuse K8s anonymous auth abuse Azure Arc abuse Azure Run Commands abuse Azure Batch abuse Azure AD abuse Appstream abuse