Researchers at Rezonate have taken a deep dive into misconfigurations of GitHub integration with cloud native vendors and unsurprisingly found many critical misconfigurations, leaving connected AWS/GCP accounts vulnerable to potential takeover attacks.
In a blog post on this research to be published this week, the team will:
- Introduce their misconfiguration research process
- Explain the OIDC implementation process that GitHub uses to authenticate to the cloud
- Present the misconfigurations they identified across various organizations
- Provide a step-by-step guide for discovering and fixing the problem(s)
- Propose how to avoid the issue completely
The research team is also providing, for the general public, a script to their GitHub repository, which performs a quick scan against the AWS account or GCP project and reveals possible vulnerable roles and service accounts.
The blog will appear on their blog page here and it is worth a read: https://itnerd.blog/2023/05/17/rezonate-posts-a-blog-detailing-github-misconfigurations-that-can-lead-to-account-takeovers/
Like this:
Like Loading...
Related
This entry was posted on May 17, 2023 at 8:35 am and is filed under Commentary. You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
Rezonate Posts A Blog Detailing Github Misconfigurations That Can Lead To Account Takeovers
Researchers at Rezonate have taken a deep dive into misconfigurations of GitHub integration with cloud native vendors and unsurprisingly found many critical misconfigurations, leaving connected AWS/GCP accounts vulnerable to potential takeover attacks.
In a blog post on this research to be published this week, the team will:
The research team is also providing, for the general public, a script to their GitHub repository, which performs a quick scan against the AWS account or GCP project and reveals possible vulnerable roles and service accounts.
The blog will appear on their blog page here and it is worth a read: https://itnerd.blog/2023/05/17/rezonate-posts-a-blog-detailing-github-misconfigurations-that-can-lead-to-account-takeovers/
Share this:
Like this:
Related
This entry was posted on May 17, 2023 at 8:35 am and is filed under Commentary. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.