Privilege Escalation in Microsoft Azure - Christian August Holm Hansen - NDC Security 2025

This talk was recorded at NDC Security in Oslo, Norway. #ndcsecurity #ndcconferences #security #developer #softwaredeveloper Attend the next NDC conference near you: https://ndcconferences.com https://ndc-security.com/ Subscribe to our YouTube channel and learn every day: @NDC Follow our Social Media! https://www.facebook.com/ndcconferences https://twitter.com/NDC_Conferences https://www.instagram.com/ndc_conferences In this talk, I will explore the inherent risks related to assigning low-privilege roles, such as Subscription Readers. I will present a new technique for attacking Azure resources by abusing legacy Azure Resource Management APIs, and how to mitigate this in your environments by building defense in-depth. The techniques enabled us to find several vulnerabilities in Azure products themselves, and these will be used as examples to underline the attack techniques. Some of the vulnerabilities have been partially fixed by Microsoft, but most configurations are still vulnerable to some extent.