Josh Magri
Josh has a B.A. in Computer Science from the University of Iowa and currently holds the GSEC, GCIH, GCFA, and OSCP certifications. He has experience as a penetration tester, red teamer, and application security consultant.
More by Josh Magri
Cloud Pentesting
Abusing Azure Hybrid Workers for Privilege Escalation – Part 2: An Azure PrivEsc Story
Discover how an Azure user with the Subscription Reader role can compromise credentials or certificates from Automation Accounts and escalate to a Contributor level role.
Learn More
Cloud Pentesting
Escalating from Logic App Contributor to Root Owner in Azure
Discover how a penetration test led to gaining owner access at the root level of a tenant in Azure. Read on for a walkthrough and disclosure to MSRC.
Learn More
Cloud Pentesting
Illogical Apps – Exploring and Exploiting Azure Logic Apps
A walk through enumerating and exploiting Azure Logic Apps with varying permissions.
Learn More