Resources / Podcast / fwd:cloudsec - Leveraging Azure Resource Graph for Good and for Evil - Darwin Salazar

August 3, 2022

fwd:cloudsec - Leveraging Azure Resource Graph for Good and for Evil - Darwin Salazar

Podcast

‍

In this fwd:cloudsec presentation, Darwin Salazar explores the dual nature of Azure Resource Graph (ARG) as both a defensive asset and a potential reconnaissance tool for adversaries. He demonstrates how ARG's extensive visibility across Azure subscriptions can be harnessed by blue teams for asset discovery and compliance auditing, while also highlighting how red teams might exploit its capabilities to bypass traditional logging mechanisms during the discovery phase of an attack.

Through practical examples and live demonstrations, Darwin illustrates the power of Kusto Query Language (KQL) in querying ARG, emphasizing the importance of understanding and monitoring ARG usage to bolster security postures. This session is essential for security professionals aiming to grasp the nuances of ARG and its implications in both offensive and defensive contexts.

‍

Watch the full talk on YouTube!

Darwin Salazar

ON THIS POST

Detection Dispatch Ep. 32: Smoky Signals | Security ETL & Data Optimization with a Tasting Twist

Christian Almenar

|

October 23, 2024

Front Lines Podcast: Christian Almenar, CEO of Monad: $19 Million Raised to Solve the Cybersecurity Big Data Problem

Christian Almenar

|

April 8, 2024

Itnig Podcast: La REALIDAD de SILICON VALLEY | Christian Almenar #323

Darwin Salazar

|

November 3, 2023

Resilient Cyber w/ Darwin Salazar - Security Data, Detections & the Cyber Market

Darwin Salazar

|

August 3, 2022