Az - Table Storage Post Exploitation

Reading time: 3 minutes

tip

Learn & practice AWS Hacking:HackTricks Training AWS Red Team Expert (ARTE)
Learn & practice GCP Hacking: HackTricks Training GCP Red Team Expert (GRTE)

Support HackTricks

Check the subscription plans!
Join the 💬 Discord group or the telegram group or follow us on Twitter 🐦 @hacktricks_live.
Share hacking tricks by submitting PRs to the HackTricks and HackTricks Cloud github repos.

Table Storage Post Exploitation

For more information about table storage check:

Az - Table Storage

Microsoft.Storage/storageAccounts/tableServices/tables/entities/read

A principal with this permission will be able to list the tables inside a table storage and read the info which might contain sensitive information.

bash

# List tables
az storage table list --auth-mode login --account-name <name>

# Read table (top 10)
az storage entity query \
    --account-name <name> \
    --table-name <t-name> \
    --auth-mode login \
    --top 10

Microsoft.Storage/storageAccounts/tableServices/tables/entities/write | Microsoft.Storage/storageAccounts/tableServices/tables/entities/add/action | Microsoft.Storage/storageAccounts/tableServices/tables/entities/update/action

A principal with this permission will be able to write and overwrite entries in tables which might allow him to cause some damage or even escalate privileges (e.g. overwrite some trusted data that could abuse some injection vulnerability in the app using it).

The permission Microsoft.Storage/storageAccounts/tableServices/tables/entities/write allows all the actions.
The permission Microsoft.Storage/storageAccounts/tableServices/tables/entities/add/action allows to add entries
The permission Microsoft.Storage/storageAccounts/tableServices/tables/entities/update/action allows to update existing entries