Monthly Archives: January 2022

Extract plain-text password from Azure VM Reset Password feature

Reset password is a common feature that allows you to create or reset a local administrator account on Azure VM. This feature is helpful when you forgot the account used to log into your VM. There would be a question … Continue reading

Posted in Security Operation | Tagged | Leave a comment

Script to audit managed identities on VM and their role assignment

Managed Identity in Azure is not new. Everyone loves it. People use it more often these days. Managed Identity would reduce the overhead of managing secrets or kind of certificate. However, the Managed Identity feature also introduces a new risk … Continue reading

Posted in Identity & Access Control, Security Automation | Tagged , | 1 Comment

Scan Azure VMs in the same subnet with Nmap

Last weekend I made a small PoC to use Nmap to scan an Azure VM. I then came up with an idea to write a script to get scan all live hosts in the same subnet from the given VM. … Continue reading

Posted in Network Security, Security Automation | Tagged | 2 Comments