@karimscloud.bsky.social
Principal Security Architect & Partner at http://o3c.no, CloudSec Researcher, Microsoft Security MVP, CSA Norway Board Member
My first bounty
15.05.2025 18:24 β π 2 π 0 π¬ 0 π 0
Waitingβ¦ π₯²
08.05.2025 17:31 β π 2 π 0 π¬ 1 π 0
I find it hard to believe that AWS charges me for having hourly data of costs in my AWS environment.
04.05.2025 14:19 β π 1 π 1 π¬ 0 π 0.. You'd also have to first elevate yourself in order to remove another principal. It's interesting how a Global Admin has an invisible access to the Root scope.
03.05.2025 06:59 β π 1 π 0 π¬ 0 π 0
If you were to remove any of the users previously, it had to be done through the REST API, as the permission is inherited on the Tenant Root Group visible in the portal
03.05.2025 06:59 β π 0 π 0 π¬ 1 π 0
You can now see users that have triggered the Elevated Access toggle in Azure.
A simple bypass is to immediately assign the principal the same permissions at the top level management group, Tenant Root Group (tenant ID) rather than the Root scope ("/").
I still think this is an important feature.
Finally read and implemented the AWS Delegated Management - @scottpiper.bsky.socialβs article hits the nail on challebges - we built and maintained an internal API to access this information for automation purposes, which I would do again if it wasnβt for this feature www.wiz.io/blog/use-cas...
01.05.2025 16:19 β π 3 π 2 π¬ 0 π 0
Weβre also happy to announce our Europe scholarship program. Through this initiative, we hope to give a limited number of students or those looking to make a career change a chance to attend the conference, through a complimentary ticket and a stipend to cover travel expenses..
20.04.2025 06:49 β π 1 π 1 π¬ 1 π 0
Ticket sales for fwd:cloudsec Europe 2025 goes live on April 22nd, first batch at 9 AM CET and a second batch at 7PM CET. Tickets are sold through Swoogo, link at fwdcloudsec.org/conference/e... ..
20.04.2025 06:48 β π 6 π 5 π¬ 1 π 0GitHub has released an unofficial tool to audit GitHub Actions
Released after the Changed-Files debacle
github.com/github/audit...
Cloudy at FlΓΈtatind, Sunndal
18.04.2025 13:48 β π 1 π 0 π¬ 0 π 0or the common "hey how are you" to derail conversation before it has even started
10.04.2025 10:48 β π 1 π 0 π¬ 1 π 0Thanks for sharing! Had this discussion over a few beers with a TAM yesterday that had heard of similar cases
08.04.2025 13:30 β π 1 π 0 π¬ 0 π 0The only liberation weβve experienced through the past week is the liberation of our savings
08.04.2025 12:17 β π 0 π 0 π¬ 2 π 0What happens if a lambda that puts an event to an S3 triggers on the same S3β¦ I canβt afford to find out
07.04.2025 19:13 β π 0 π 0 π¬ 1 π 0Messed up an entire GCP org. trying to clean up inheritance using google_organization_iam_policy rather than binding.
Will never know what random internal service account were assigned a hopefully not critical role.
It's happening again! We're looking for sponsors that will help support this years European conferenceπ€
24.03.2025 12:34 β π 0 π 0 π¬ 0 π 0Is there any way to generate an SBOM that describes github actions and their transitive dependencies? Ref tj-actions. I feel like this should be a thing
20.03.2025 07:25 β π 1 π 1 π¬ 0 π 0Given this is the second time I look into an AWS Solutions product and find something interesting, with no AppSec background - I have a strong feeling there's more to be found..
19.02.2025 07:32 β π 0 π 0 π¬ 0 π 0
Stumbled upon the Serverless Image Handler while looking into AWS Solutions: www.o3c.no/knowledge/ab...
19.02.2025 07:31 β π 1 π 1 π¬ 1 π 0I'll be in Singapore at that time, but for those lucky enough to make it - ENJOY and hope to see you next year or in Europe this Fall (TBA).
18.02.2025 15:31 β π 0 π 0 π¬ 0 π 0Rather than maintaining a poorly written niche tool, we hope that the functionality will be adopted by more prevalent and widely adopted tools such as BloodHound or commercial offerings such as Wiz Code.
18.02.2025 15:28 β π 0 π 0 π¬ 0 π 0
Last week, we presented our latest research into Azure and OIDC where we also released our latest tool for mapping attack paths between Azure and GitHub
www.o3c.no/knowledge/to...
The CFP for the best cloud security conference on earth is now open! If you'd like your research to be presented alongside the cutting edge of the industry, this is your opportunity!
fwdcloudsec.org/conference/n...
I'll give this a go as well. Thanks for sharing!
30.01.2025 06:49 β π 0 π 0 π¬ 0 π 0Congrats, great addition to the Wiz team and now you have a reason to visit us in Norway
29.01.2025 17:54 β π 1 π 0 π¬ 0 π 0
AWS just renamed the Serverless Image Handler solution to Dynamic Image Transformation for Amazon CloudFront
aws.amazon.com/solutions/im...
Starting the new year above the clouds
01.01.2025 14:23 β π 3 π 0 π¬ 0 π 0
The full recording can be found here:
media.ccc.de/v/38c3-wir-w.... There's an English audio track available.
And the Spiegel article can be found here:
www.spiegel.de/netzwelt/web...
