Great architectural overview, greatly helps me understand security leaks from an attacker's perspective
I tried out the product myself, and I really like it. In just 10 minutes after connecting my account I got the results.
My two takeaways:
1) The overview of all the cloud assets and the effective permissions each resource has to any other resource is mind-blowing. I now understand my design and architecture much better and know over-privileged resources and accesses to data.
2) The privilege-escalation attack scenarios are next-level. They find critical combinations of permissions that I could have never found manually. The findings are prioritized by attack goal and impact, which is a good way to start fixing them.
I haven't tried out the API or integration into CI/CD yet. I’ll do it later.
There are no comments to display