Pentesting Azure Applications

<b>A comprehensive guide to penetration testing cloud services deployed with Microsoft Azure, the popular cloud computing service provider used by companies like Warner Brothers and Apple.</b><br><br><i>Pentesting Azure Applications </i>is a comprehensive guide to penetration testing cloud services deployed in Microsoft Azure, the popular cloud computing service provider used by numerous companies. You'll start by learning how to approach a cloud-focused penetration test and how to obtain the proper permissions to execute it; then, you'll learn to perform reconnaissance on an Azure subscription, gain access to Azure Storage accounts, and dig into Azure's Infrastructure as a Service (IaaS).<br><br>You'll also learn how to:<br><br>- Uncover weaknesses in virtual machine settings that enable you to acquire passwords, binaries, code, and settings files<br>- Use PowerShell commands to find IP addresses, administrative users, and resource details<br>- Find security issues related to multi-factor authentication and management certificates<br>- Penetrate networks by enumerating firewall rules<br>- Investigate specialized services like Azure Key Vault, Azure Web Apps, and Azure Automation<br>- View logs and security events to find out when you've been caught<br><br>Packed with sample pentesting scripts, practical advice for completing security assessments, and tips that explain how companies can configure Azure to foil common attacks, <i>Pentesting Azure Applications</i> is a clear overview of how to effectively perform cloud-focused security tests and provide accurate findings and recommendations.