Archives
- January 2022 (3)
- December 2021 (9)
- November 2021 (13)
- August 2021 (1)
- July 2021 (6)
- June 2021 (1)
- May 2021 (1)
- April 2021 (1)
- January 2021 (1)
- August 2020 (1)
- July 2020 (3)
- June 2020 (1)
- March 2020 (5)
- February 2020 (3)
- January 2020 (18)
- December 2019 (22)
- November 2019 (3)
- October 2019 (1)
- July 2019 (1)
- April 2019 (2)
- January 2019 (2)
- October 2018 (2)
- September 2018 (1)
- August 2018 (4)
- July 2018 (4)
- February 2018 (6)
- January 2018 (3)
- November 2017 (1)
- August 2017 (3)
- May 2017 (4)
- April 2017 (4)
- December 2016 (1)
Categories
- Application Security (1)
- Azure Security Center (10)
- Governance & Compliance (19)
- Host Protection (3)
- Identity & Access Control (9)
- Monitoring & Detection (22)
- Network Security (3)
- Secure Development (13)
- Security Automation (53)
- Security Operation (21)
- Service Overview (1)
Tag Archives: azure key vault
Be careful when you have escape char in Key Vault secret value
I recently had some works that required to use Azure Key Vault. Specifically a secret that stored a service principal’s password that contained some special characters (escape ones). This article just shows you my finding and how to fix it … Continue reading
Quick notes on the use of securestring in Azure Blueprints
Azure Blueprint does support secureString and secureObject type when you create artifact and blueprint definition. So far there is not much of information about the use of secureString with Azure Blueprint. This article would hopefully clarify somewhat about secureString.
Trigger an alert when setting storage encryption with Key Vault
There was a great question today in a private community channel asking about monitoring and alerting when a storage account encryption is configured to use key in Key Vault in stead of Microsoft managed key. This question just drove me … Continue reading
A note behind Get-AzureKeyVaultSecret
First look at Get-AzureKeyVaultSecret you would head to think about this cmdlet to retrieve secret information in Azure Key Vault secret. However, during my test this cmdlet also returns certificate information and its private key which is pretty much like … Continue reading
Notes with cross-subscription Event Hub
Event Hub is an event processing cloud service which provides the ability to process millions of message per second and make them readable by external services. In the security monitoring scenario, you may see a use case that external consumer like … Continue reading
Some fun with Azure Key Vault REST API and HttpClient – Part 5
We have gone through 5 articles about Azure Key Vault REST API in which we explored the possibility of working with Azure Key Vault REST API, specific to Vault and Secret. We also realized just ‘a bit‘ about how unclear … Continue reading
Some fun with Azure Key Vault REST API and HttpClient – Part 4
The Part 2 in Some fun with Azure Key Vault REST API and HttpClient series provides simple guidance on how to create a new fresh secret without creating a new version of existing secret under a specified vault in Azure … Continue reading
Some fun with Azure Key Vault REST API and HttpClient – Part 2
In previous article, I demonstrated how to use HttpClient to work with Azure Key Vault REST API. With this approach, you shouldn’t worry about your programming language skills. What I meant was that you could even use Python, for instance, … Continue reading