Roi Nisimi (@Roinisimi)

Title	Vulnerabilities	Programs	Authors
LeakyCLI: AWS and Google Cloud Command-Line Tools Can Expose Sensitive Credentials in Build Logs	Information Disclosure	AWS Google (GCP)	Roi Nisimi (@Roinisimi)
Sys:All: How A Simple Loophole in Google Kubernetes Engine Puts Clusters at Risk of Compromise	Kubernetes Cloud Privilege Escalation	Google (GKE)	Roi Nisimi (@Roinisimi) Ofir Yakobi
Unauthenticated Access to GCP Dataproc Can Lead to Data Leak	Cloud Data Leak Post-Exploitation	Google (GCP)	Roi Nisimi (@Roinisimi)
Bad.Build: A Critical Privilege Escalation Design Flaw in Google Cloud Build Enables a Supply Chain Attack	Cloud Privilege Escalation	Google	Roi Nisimi (@Roinisimi)
From listKeys to Glory: How We Achieved a Subscription Privilege Escalation and RCE by Abusing Azure Storage Account Keys	Cloud Privilege Escalation	Microsoft (Azure)	Roi Nisimi (@Roinisimi)

Page 1 of 1