Azure Ftp Deployments Allowed
Description
Detects Azure App Services that allow FTP/FTPS deployments, which could expose the application to unauthorized code deployments and security risks. FTP-based deployments are considered legacy and less secure compared to modern deployment methods like Azure DevOps or GitHub Actions.
Detection Strategy
• Checks the FTP deployment state configuration for each Azure App Service
• Reports a vulnerability when an App Service has ftps_state set to 'AllAllowed'
• Alerts when FTP/FTPS deployments are enabled, as this increases the attack surface for unauthorized deployments
Search for vulnerabilities in your apps for free with Fluid Attacks' automated security testing! Start your 21-day free trial and discover the benefits of the Continuous Hacking Essential plan. If you prefer the Advanced plan, which includes the expertise of Fluid Attacks' hacking team, fill out this contact form.