AZT604 - Azure KeyVault Dumping#
An adverary may access an Azure KeyVault in an attempt to view secrets, certificates, or keys.
| ID | Name | Description | Action | Resources |
|---|---|---|---|---|
| AZT604.1 | Azure KeyVault Secret Dump | By accessing an Azure KeyVault, an adversary may dump any or all secrets. | Microsoft.KeyVault/vaults/secrets/getSecret/action | Azure KeyVault |
| AZT604.2 | Azure KeyVault Certificate Dump | By accessing an Azure KeyVault, an adversary may dump any or all certificates. | Microsoft.KeyVault/vaults/certificates/read | Azure KeyVault |
| AZT604.3 | Azure KeyVault Key Dump | By accessing an Azure KeyVault, an adversary may dump any or all keys. | Microsoft.KeyVault/vaults/keys/read | Azure KeyVault |