Tag: mitreatta&ck

Authentication Bypass in Apache Airflow - CVE-2020-17526 and AWS Cloud Platform compromise

An authentication bypass within Apache Airflow allowed an attacker to login as any user in the Airflow system. Post exploitation within the app, led to a full cloud account compromise on AWS.
Jun 22, 2021 ~ 7 min read
mitreatta&ck
cloudsecurity
kubernetes
Part 9 - Mapping the MITRE ATT&CK framework to your Kubernetes cluster: Impact on the Cluster

This is the ninth and the last part of a series on the MITRE ATT&CK framework for Kubernetes, covering the Impact tactic with examples.
Feb 26, 2021 ~ 4 min read
mitreatta&ck
cloudsecurity
kubernetes
Part 8 - Mapping the MITRE ATT&CK framework to your Kubernetes cluster: Lateral Movement

This is the eighth part of a nine part series on the MITRE ATT&CK framework for Kubernetes, covering the Lateral Movement tactic with examples.
Feb 22, 2021 ~ 6 min read
mitreatta&ck
cloudsecurity
kubernetes
Part 7 - Mapping the MITRE ATT&CK framework to your Kubernetes cluster: Discovery

This is the seventh part of a nine part series on the MITRE ATT&CK framework for Kubernetes, covering the Discovery tactic with examples.
Feb 8, 2021 ~ 6 min read
mitreatta&ck
cloudsecurity
kubernetes
Part 6 - Mapping the MITRE ATT&CK framework to your Kubernetes cluster: Credential Access

This is the sixth part of a nine part series on the MITRE ATT&CK framework for Kubernetes, covering the Credential Access tactic with examples.
Jan 28, 2021 ~ 5 min read
mitreatta&ck
cloudsecurity
kubernetes
Part 5 - Mapping the MITRE ATT&CK framework to your Kubernetes cluster: Defense Evasion

This is the fifth part of a nine part series on the MITRE ATT&CK framework for Kubernetes, covering the Defense Evasion tactic with examples.
Jan 21, 2021 ~ 6 min read
mitreatta&ck
cloudsecurity
kubernetes

Newer posts

Older posts