Overview
This course aims to teach learners about Azure privilege escalation. By the end of the course, students will be able to understand the permissions model in Azure, escalate privileges using various methods, manipulate storage accounts, virtual disks, runbooks, and subscriptions, as well as create and manage automation accounts. The teaching method includes theoretical explanations, practical demonstrations, and examples. This course is intended for cybersecurity professionals, ethical hackers, system administrators, and anyone interested in Azure security.
Syllabus
Intro
Overview
Initial Entry Points
Permissions Model
No Azure Access
Reader Rights
Escalation Example
Contributor Access
Local System
Storage Accounts
Virtual Disks
Runbooks
Subscriptions
Tenant Admin
Adding Accounts
Adding Guest Accounts
Creating Your Own Subscription
Automation Accounts
Demo
Watchers
Backdoors
Questions