@daveobrien.bsky.social
Sick of writing cloud assessment reports? ARGOS writes them for you. Founder of ARGOS Cloud Security. Former Microsoft Azure MVP (10 years), private pilot, dad.
Reminder! It's almost time that those old pesky TLS versions are turned off by Microsoft. Use ARGOS to help your customers (or yourself) to understand where to start.
Watch this short demo of ARGOS in action.
argos-security.io/videos/#Find...
#azure #cloudsecurity #cloud #cybersecurity
Apparently, people love to see ARGOS in action and listen to my beautiful voice. Watch demo videos here!
argos-security.io/videos/
Learn how easy it is to find issues in #Azure and #EntraID / #M365, and understand them, using our network and infrastructure diagrams.
#cloudsecurity #cybersecurity
Want to learn more about our new "Entra ID to Azure paths"? argos-security.io
19.05.2025 09:38 β π 1 π 0 π¬ 0 π 0
π₯ Hottest latest release! π₯
Why is this "demo" Entra ID user a potential security issue?
Explain in one simple image why.
(Hint: Global Reader, and access to an Azure Resource Group with important resources, ARGOS also told you "no MFA" π±)
#m365 #entraid #azure
π New feature alert: Unified Blast-Radius Map π
One diagram shows Entra ID/M365 β‘οΈ Azure, end-to-end.
No KQL, no portal clicking.
Watch the 2-min demo here and if you are keen to see more, check our other demos on argos-security.io/videos
#entraid #azure #m365 #cloudsecurity
The recent writeup of the OuttaTune vulnerability (cirriustech.co.uk/blog/outtatu...) by Graham G. inspired us to add and update the following detection into ARGOS.
"Ensure only compliant devices can access M365 Office resources"
More about ARGOS: argos-security.io
πππ
What's this? In the upcoming release ARGOS's cloud assessments will show E2E info from #EntraID to #Azure.
Entra apps with security issues and access to Azure resources or a user with admin permissions that has User Access Admin permissions on a Subscription?
Info: argos-security.io
This was an interesting one. Odd errors when attempting to execute #PowerShell from within ARGOS, a c# application running on Linux Azure Functions. These errors took us down a rabbit hole with an interesting root cause and simple solution.
cloud-right.com/2025/04/azur...
#github #dotnet
Kind of makes sense that there's focus on those products (not defending some of their pretty basic problems).
The fact that they often have wide access (network and/or permissions) on most systems in an environment makes them a great target.
TIL: Basically the same workflow on GitHub Actions, moved from windows-latest (bottom run) to ubuntu-latest (top run) is almost 50% faster.
The top run even has one additional step in it downloading and extracting a 70MB tar from the internet.
#github #cicd #windows #linux
While architecturally, this is almost as desired, the point here is, the web service is unprotected (no API Gateway, no WAF, etc) and people often don't understand what paths they open up in an environment via managed identities.
16.04.2025 10:30 β π 0 π 0 π¬ 0 π 0
π Cloud Attack Paths π
Identifying how someone / something can "walk" through your #Azure cloud is important, and often not trivial.
Instead of manual digging, go get a cup of tea and have ARGOS draw you a picture of the environment.
argos-security.io
#cloudsecurity #microsoftsecurity #entraid
"we don't control the universities"
That didn't age well, @patrick.risky.biz .
Should that have been "but we try"? π
βοΈ David on tour βοΈ
#Munich - 22-23/05
#DΓΌsseldorf - 26-28/05 (speaking at Cloud Summit)
#London - 29-31/05
Who wants to catch up in any of these cities? I'd love to meet up.
#cloud #microsoft #m365 #cloudsecurity #entraid #azure
Short demo of how easy it is to connect Microsoft Power BI to ARGOS Cloud Security.
No fancy dashboards here, but I'm sure you can do much better than I can.
Let me know what you come up with or what you'd like me to try.
youtu.be/BwQhC_8wmVo
#powerbi #azure #entraid
Little sneak peak! Customers ask us regularly "can we build our own #PowerBI dashboard with ARGOS data?". You sure can!
We're no PowerBI wizards, but if you are, you have lots of data available to play with.
Demo video to come next week.
More info on argos-security.io
#azure #entraid #m365
Apparently, there are still people that don't know how awesome our cloud assessment reports are.
People that still write reports for Azure or Entra ID from scratch.
I feel for you. I recommend you take a look at our sample reports right away.
argos-security.io/argos-sample...
#azure #entraid
I hate writing reports, always have.
Do you also hate writing reports?
Yes, but it's part of your job as a consultant when doing cloud reviews for your customers?
Fret no more! Download examples here!
argos-security.io/argos-sample...
#azure #m365 #entraid #microsoftentra #cloudsecurity
Want to know what this thing I always talk about is all about?
Do you dislike writing reports and rather dive deep into the data?
Go ahead check out the ARGOS Cloud Security demo reports and videos:
argos-security.io/argos-sample...
#entraid #azure #m365 #cloudsecurity
Got some questions via DMs about this:
- yes, all current SCuBA checks (that are automatable) are covered
- yes, we're working on further M365 coverage
- yes, on average it takes our customers 6 minutes to set this up
#entraid #m365 #cloudsecurity
Are you like me and want to understand how compliant with CISA SCuBA your #EntraID tenant is?
One-off or continuous checking, monitoring and reporting, set up in minutes.
We eat our own dogfood and get notified whenever ARGOS finds something.
Learn more at argos-security.io
#m365 #cloudsecurity
π ARGOS now checks if there is a conditional access policy in your Entra ID that blocks device code flow authentication as per Microsoft guidance.
π
Learn more on argos-security.io
#entraid #m365 #cloudsecurity
Other products will hide their secret sauce behind paywalls or annoying sales calls, not ARGOS!
Download our sample #Cloud Security Assessment reports here:
argos-security.io/argos-sample...
#azure #entraid #microsoft365 #m365
Attended a #DevSecOps session today, and while technically correct in what they said, the thing that was missed by all -> None of it will work without organisational structure change.
You'll just annoy everybody with findings, vulns, issues, that nobody can do anything about.
#azure #security
PSA: Only a few months left to find and remediate those legacy TLS resources in Azure.
How? Here's a demo video for Storage Accounts.
argos-security.io/videos#azure...
#azure #cloudsecurity #cloud
If youβre a Service Provider or consultant, imagine what that does for your bottom line.
Ready to learn more? argos-security.io
#entraid #azure
Consultants!
Make use of this offer for your upcoming customer cloud reviews and save a bunch of time and effort, while not having to bother writing boring reports from scratch.
argos-security.io/argos-for-co...
#entraid #azure
So much "old" stuff in this doco. "Windows Azure Active Directory", "Azure AD Graph"...
Already working on adding this new guidance to ARGOS though.
Yet another Microsoft Support ticket where I'm being told "this is out of our scope, you need to raise a new ticket with someone else".
Then they say "you must use Graph API for this" and when I ask "which API?" they say "there is none".
Helpful. Slow. Clap. Thanks!
