#mitreatta&ck

mitreatta&ck

10 articles tagged with #mitreatta&ck

academy Jun 21, 2021

Authentication Bypass in Apache Airflow - CVE-2020-17526 and AWS Cloud Platform compromise

An authentication bypass within Apache Airflow allowed an attacker to login as any user in the Airflow system. Post exploitation within the app, led to a full cloud account compromise on AWS.

Akash Mahajan

academy Feb 25, 2021

Part 9 - Mapping the MITRE ATT&CK framework to your Kubernetes cluster: Impact on the Cluster

This is the ninth and the last part of a series on the MITRE ATT&CK framework for Kubernetes, covering the Impact tactic with examples.

Akash Mahajan

academy Feb 21, 2021

Part 8 - Mapping the MITRE ATT&CK framework to your Kubernetes cluster: Lateral Movement

This is the eighth part of a nine part series on the MITRE ATT&CK framework for Kubernetes, covering the Lateral Movement tactic with examples.

Akash Mahajan

academy Feb 7, 2021

Part 7 - Mapping the MITRE ATT&CK framework to your Kubernetes cluster: Discovery

This is the seventh part of a nine part series on the MITRE ATT&CK framework for Kubernetes, covering the Discovery tactic with examples.

Akash Mahajan

academy Jan 27, 2021

Part 6 - Mapping the MITRE ATT&CK framework to your Kubernetes cluster: Credential Access

This is the sixth part of a nine part series on the MITRE ATT&CK framework for Kubernetes, covering the Credential Access tactic with examples.

Akash Mahajan

academy Jan 20, 2021

Part 5 - Mapping the MITRE ATT&CK framework to your Kubernetes cluster: Defense Evasion

This is the fifth part of a nine part series on the MITRE ATT&CK framework for Kubernetes, covering the Defense Evasion tactic with examples.

Akash Mahajan

academy Jan 17, 2021

Part 4 - Mapping the MITRE ATT&CK framework to your Kubernetes cluster: Escalation

This is the fourth part of a nine part series on the MITRE ATT&CK framework for Kubernetes, covering the Privilege Escalation tactic with examples.

Akash Mahajan

academy Jan 12, 2021

Part 3 - Mapping the MITRE ATT&CK framework to your Kubernetes cluster: Persistence

This is the third part of a nine part series on the MITRE ATT&CK framework for Kubernetes, covering the Persistence tactic with examples.

Akash Mahajan

academy Jan 10, 2021

Part 2: Mapping the MITRE ATT&CK framework to your Kubernetes cluster: Execution

The MITRE ATT&CK framework provides a knowledgebase of adversary tactics and techniques. In this post, we see how Microsoft applied the attack matrix to K8S.

Akash Mahajan

academy Jan 8, 2021

Part 1: Mapping the MITRE ATT&CK framework to your Kubernetes cluster: Initial Access

The MITRE ATT&CK framework provides a knowledgebase of adversary tactics and techniques. In this post, we see how Microsoft applied the attack matrix to K8S.

Akash Mahajan