Identify Privileged Secrets

By Taylor Smith, Senior Product Manager

We’re helping customers contextualize and prioritize their exposed secrets. We do this by validating the secret and adding the IaC resource when relevant. Today, we added additional contextualization where we can identify Privileged secrets! Prisma Cloud Secret Scanning identifies AWS Access Key ID and Secret Access Key, then validates them. If the secret is valid, we use the IAM Security module to check to see if the role attached to the secret has privileged access. If so, we mark it as Privileged and link to Investigate with the query to identify the secret’s permission set to investigate the impact of the exposed secret.

Figure 1: Validated Secrets Demo_Palo-Alto-Networks

Figure 2: Projects_Palo-Alto-Networks

About the Author

You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.

Comment

1403 Views
0 comments
1 Likes

Register or Sign-in

Popular Blogs

How AI is Transforming Cybersecurity: Highlights from Bay Area Ignite

New Advanced URL Filtering Category: Remote-Access

Introducing Web Proxy: Now Live on LIVEcommunity!

Top Liked Posts

Subject

Likes

How AI is Transforming Cybersecurity: Highlights from Bay Area Ignite

5 Likes

Re: Tips & Tricks: How to Secure the Management Access of Your Palo Alto Networks Device

3 Likes

New Advanced URL Filtering Category: Remote-Access

3 Likes

Introducing Web Proxy: Now Live on LIVEcommunity!

3 Likes

Re: Your Feedback Matters: Take Our Survey for a Chance to Win Prizes!

2 Likes

Top Liked Authors

User

Likes Count

12

4

3

3

2