added azure scan profile

patch-11
Prince Chaddha 2024-09-07 22:40:49 +07:00
parent 68a043f869
commit bd09944ca2
2 changed files with 21 additions and 1 deletions

View File

@ -4,7 +4,7 @@ info:
author: princechaddha author: princechaddha
severity: high severity: high
description: | description: |
Ensure that private endpoints are configured for Microsoft Azure Storage accounts in order to allow clients and services to securely access data located over a network via an encrypted Private Link connection. Ensure that private endpoints are configured for Microsoft Azure Storage accounts in order to allow clients and services to securely access data located over a network via an encrypted Private Link connection.
impact: | impact: |
Not using private endpoints for Azure Storage accounts can expose sensitive data to potential breaches by allowing data transmission over less secure networks. Not using private endpoints for Azure Storage accounts can expose sensitive data to potential breaches by allowing data transmission over less secure networks.
remediation: | remediation: |

View File

@ -0,0 +1,20 @@
# Nuclei Configuration Profile for Scanning Azure ACLs
#
# This configuration file is specifically tailored for detecting issues in Azure Access Control Lists (ACLs) using Nuclei.
#
# Purpose:
# This profile is focused on identifying misconfigurations and vulnerabilities in Azure ACLs. Proper configuration of ACLs is crucial for securing Azure resources and ensuring that only authorized entities have access.
#
# Included Templates:
# This configuration references specific templates tagged with 'azure-cloud-config' to cover comprehensive scanning of Azure ACLs.
#
# Running this profile
# You can run this profile using the following command:
# nuclei -profile azure-cloud-config
code: true # enable code templates
tags:
- azure-cloud-config # filter templates with "azure-cloud-config" tags
var:
- region=us-east-1 # template input for "region" variable