최신The SecOps Group Certified Cloud Pentesting eXpert - Azure - CCPenX-Az무료샘플문제
문제1
From inside the App Service environment, request an Azure Resource Manager token using the managed identity endpoint. Which resource value should be requested for Azure Resource Manager access?
From inside the App Service environment, request an Azure Resource Manager token using the managed identity endpoint. Which resource value should be requested for Azure Resource Manager access?
정답: A
설명: (KoreaDumps 회원만 볼 수 있음)
문제2
A virtual machine has a system-assigned managed identity. From the VM shell, which Azure CLI command authenticates using that identity?
A virtual machine has a system-assigned managed identity. From the VM shell, which Azure CLI command authenticates using that identity?
정답: B
문제3
ExcaliburCorp has recently migrated part of its infrastructure to Microsoft Azure. Shortly after the migration, the company suffered a security breach resulting in the exposure of sensitive internal data. Their investigation revealed that the attack originated from a disgruntled developer who has since disappeared. To assess and mitigate further risks, ExcaliburCorp has granted you access to a replica Azure environment with the same permissions the developer had at the time of the incident. Your task is to simulate the attacker's actions, uncover the full extent of the compromise, and identify vulnerable configurations or services that enabled the breach.
Using the provided Azure login credentials, perform OSINT and reconnaissance to identify the Azure Active Directory/AAD Tenant ID associated with the environment.
ExcaliburCorp has recently migrated part of its infrastructure to Microsoft Azure. Shortly after the migration, the company suffered a security breach resulting in the exposure of sensitive internal data. Their investigation revealed that the attack originated from a disgruntled developer who has since disappeared. To assess and mitigate further risks, ExcaliburCorp has granted you access to a replica Azure environment with the same permissions the developer had at the time of the incident. Your task is to simulate the attacker's actions, uncover the full extent of the compromise, and identify vulnerable configurations or services that enabled the breach.
Using the provided Azure login credentials, perform OSINT and reconnaissance to identify the Azure Active Directory/AAD Tenant ID associated with the environment.
정답:
See the Answer in Explanation below.
Explanation:
f015f36d-c07f-41fb-9bde-fffc3a22ee8b
Detailed Solution:
Log in using the supplied breached Azure account.
az login -u [email protected] -p ' pg:Lr{k102l(fh7! ' After successful authentication, check the active Azure subscription context.
az account show
The important fields are:
{
" id " : " 7403ec86-c39d-4d80-9efa-35c7580ecefa " ,
" name " : " Azure subscription 1 " ,
" tenantDefaultDomain " : " azuresecops.onmicrosoft.com " ,
" tenantDisplayName " : " ExcaliburCorp " ,
" tenantId " : " f015f36d-c07f-41fb-9bde-fffc3a22ee8b "
}
The AAD / Microsoft Entra tenant ID is the tenantId.
Final answer:
f015f36d-c07f-41fb-9bde-fffc3a22ee8b
Explanation:
f015f36d-c07f-41fb-9bde-fffc3a22ee8b
Detailed Solution:
Log in using the supplied breached Azure account.
az login -u [email protected] -p ' pg:Lr{k102l(fh7! ' After successful authentication, check the active Azure subscription context.
az account show
The important fields are:
{
" id " : " 7403ec86-c39d-4d80-9efa-35c7580ecefa " ,
" name " : " Azure subscription 1 " ,
" tenantDefaultDomain " : " azuresecops.onmicrosoft.com " ,
" tenantDisplayName " : " ExcaliburCorp " ,
" tenantId " : " f015f36d-c07f-41fb-9bde-fffc3a22ee8b "
}
The AAD / Microsoft Entra tenant ID is the tenantId.
Final answer:
f015f36d-c07f-41fb-9bde-fffc3a22ee8b
문제4
A managed identity has Key Vault Secrets User access to kv-finance-prod. Enumerate secrets and retrieve the hidden flag.
A managed identity has Key Vault Secrets User access to kv-finance-prod. Enumerate secrets and retrieve the hidden flag.
정답:
See the Answer in Explanation below.
Explanation:
Flag{managed_identity_can_read_keyvault_secrets}
Detailed Solution:
List Key Vaults:
az keyvault list --output table
List secrets:
az keyvault secret list \
--vault-name kv-finance-prod \
--output table
Expected output:
Name Enabled
---------------- --------
db-password True
api-token True
internal-flag True
Retrieve the flag secret:
az keyvault secret show \
--vault-name kv-finance-prod \
--name internal-flag \
--query value \
--output tsv
Expected value:
Flag{managed_identity_can_read_keyvault_secrets}
Azure Key Vault can use Azure RBAC for secrets, keys, and certificates, including data-plane secret access.
Explanation:
Flag{managed_identity_can_read_keyvault_secrets}
Detailed Solution:
List Key Vaults:
az keyvault list --output table
List secrets:
az keyvault secret list \
--vault-name kv-finance-prod \
--output table
Expected output:
Name Enabled
---------------- --------
db-password True
api-token True
internal-flag True
Retrieve the flag secret:
az keyvault secret show \
--vault-name kv-finance-prod \
--name internal-flag \
--query value \
--output tsv
Expected value:
Flag{managed_identity_can_read_keyvault_secrets}
Azure Key Vault can use Azure RBAC for secrets, keys, and certificates, including data-plane secret access.