Pentesting Azure Applications: The Definitive Guide to Testing and Securing Deployments

Pentesting Azure Applications: The Definitive Guide to Testing and Securing Deployments

<b>A comprehensive guide to penetration testing cloud services deployed in Microsoft Azure, the popular cloud computing service provider used by numerous companies large and small.</b><br /><br />You'll learn how to:<br />-Find security issues related to multi-factor authentication and management certificates<br />-Make sense of Azure's services by using PowerShell commands to find IP addresses, administrative users, and firewall rules<br />-Discover security configuration errors that could lead to exploits against Azure storage and keys<br />-Uncover weaknesses in virtual machine settings that enable you to and acquire passwords, binaries, code, and settings files<br />-Penetrate networks by enumerating firewall rules<br />-Investigate specialized services like Azure Key Vault and Azure Websites<br />-Know when you might be caught by viewing logs and security events<br /><br />Packed with real-world examples from the author's experience as a corporate penetration tester, sample scripts from pen-tests and "Defenders Tips" that explain how companies can reduce risk, <i>Pentesting Azure Applications</i> provides a clear overview of how to effectively perform security tests so that you can provide the most accurate assessments possible.