Daily Risk Register
Enterprise Config Traps
A searchable catalogue of dangerous defaults, brittle infrastructure patterns, and production-grade configuration failures that hide in ordinary enterprise platforms.
6 active records
catalog://enterprise-config-traps
Kubernetes RBAC Hardening
Kubernetes Pods Inherit API Tokens Nobody Requested
Read failure mode
DNS Resilience
Open AXFR: Your Nameserver Handing Out the Whole Zone
Read failure mode
Active Directory Privileged Access
AdminSDHolder Stale ACLs: Rights That Outlive Admin Status
Read failure mode
AWS IAM Policy Design
NotAction Plus Allow: IAM's Silent Escalation Path
Read failure mode
Azure Storage Security
Azure Blob Public Access: The Default Nobody Disables
Read failure mode
Kubernetes
hostPath Mounts: The docker.sock Escape Hatch
Read failure mode