Logo
Technology

Using Halberd: A More Reliable Way to Test Your Multi-Cloud Security

Running multiple cloud platforms but not fully confident in your security posture? Meet Halberd, a tool that helps you test and validate your multi-cloud security in a practical, hands-on way, not just based on assumptions.

ITSEC AsiaITSEC Asia
|
Feb 28, 2026
Using Halberd: A More Reliable Way to Test Your Multi-Cloud Security

Using Halberd: A More Reliable Way to Test Your Multi-Cloud Security

Running multiple cloud platforms but not fully confident in your security posture?
Meet Halberd, a tool that helps you test and validate your multi-cloud security in a practical, hands-on way, not just based on assumptions.

Why Guessing Isn’t a Security Strategy?

Today, many organizations rely on multiple cloud providers. Some use Amazon Web Services for infrastructure, Microsoft Azure for certain applications, and maybe Google Cloud for other workloads.

The challenge? The more platforms you use, the more complex your environment becomes. So the real question is: Are you truly confident your systems are secure?

That’s where Halberd comes in.

The Cloud Security Landscape Has Changed

Security used to focus heavily on firewalls and perimeter defenses. Today, attackers are far more interested in user accounts, credentials, and identity access.

As organizations move deeper into multi-cloud environments, common challenges start to surface:

  • Different providers with different configurations

  • Expanding infrastructure that’s harder to monitor

  • Security tools that operate in silos

  • Limited visibility across the entire environment

In many cases, security evaluation ends up feeling like, “We hope this is secure enough.”

So, why Halberd?

Halberd is an open-source tool built to help security teams run controlled attack simulations against their cloud environments.

Instead of just watching dashboards, Halberd allows you to actively test:

  • Whether your detection systems are working properly

  • Whether hidden gaps still exist

  • What logs are generated during simulated attacks

  • How quickly your systems respond

In short, it’s about real validation, not assumptions.

1. One Tool for Multiple Cloud Platforms

Halberd supports several platforms within a single environment:

  • Amazon Web Services

  • Microsoft Azure

  • Microsoft Entra ID

  • Microsoft Office 365

  • Google Cloud

This means your team doesn’t need to switch between different tools to test each cloud separately.

2. Structured and Comprehensive Attack Simulations

Halberd includes over 100 attack simulation techniques aligned with industry standards.

Each simulation can be configured and produces clear, actionable results. This helps security teams determine whether their defenses are truly prepared for real-world threats.

3. Easy to Use, No Complex Command Line Required

Many security tools rely heavily on command-line interfaces and require deep technical expertise. Halberd takes a different approach.

With its web-based interface:

  • It’s more intuitive

  • No need to memorize commands

  • Accessible directly from a browser

  • Easier for teams to collaborate

Security testing becomes more practical and efficient.

How Does It Compare to Other Tools?

Halberd vs Pacu

Pacu is an open-source tool designed specifically for AWS security testing.

However:

  • It focuses only on AWS

  • It is command-line based

Halberd, on the other hand:
âś” Supports multi-cloud environments
âś” Web-based graphical interface
âś” Provides a more integrated experience

Halberd vs Stratus Red Team

Stratus Red Team is built to test cloud threat detection using predefined attack scenarios.

Key differences:

  • Command-line based

  • Typically relies on dedicated simulation infrastructure

Halberd offers more flexibility across real cloud environments and is designed to be more user-friendly.

ITSEC’s Contribution to Halberd  

ITSEC, through the Cloud Security team, has made significant contributions to the Halberd project, including:

  1. Technical Core
    Contributed 4.8K lines of code across 36 commits and 10 pull requests. This was not just maintenance; it was a structural expansion.

  2. Closing the Google Cloud Gap Support
    Introduced comprehensive support for Google Cloud, including over 10 new attack techniques, ensuring Halberd provides the same depth as it does for other cloud providers/platforms.

  3. Reliability and User Experience Improvements
    Fixed bugs and enhanced the Halberd user interface (UI) and refined event logging mechanisms.

  4. General Refinements
    Implemented various minor improvements and changes in the project.

  5. Community Evangelism
    Extended our contribution beyond code by presenting the project at PyCon Indonesia 2025, helping grow the tool's user base within the Python developer community.

It’s Time to Move Beyond Monitoring

Securing multi-cloud environments isn’t just about deploying monitoring tools and hoping everything is fine.

Organizations need to:

  • Actively test their defenses

  • Identify gaps before attackers do

  • Ensure detection systems actually work

  • Gain full visibility across their cloud environments

Halberd helps make this process structured, measurable, and easier to execute.

At ITSEC, we don’t just recommend a tool, we actively develop it alongside the open-source community.

Prepare Before It Becomes a Crisis

Waiting for an incident to expose weaknesses is risky, and you need to proactively validate your multi-cloud security.

ITSEC can help you:

  • Conduct multi-cloud security testing

  • Validate detection and response mechanisms

  • Identify misconfigurations and hidden risks

  • Strengthen your overall cloud resilience

Reach out to the ITSEC team for a consultation and initial assessment tailored to your organization’s needs.

Talk to our Cloud Security Expert Now!

Share this post

You may also like

A Brief History of the Internet
Technology

A Brief History of the Internet

I got hooked on computers when Oregon Trail was first released. Back then, if you wanted your computer to be useful, you had to manually code all your applications in BASIC or endure the tedious process of "blipping" sounds at it. The only alternative to typing hundreds of lines of code was to load pre-recorded cassette tapes with a series of "beeps," whistles, and instructions for your computer to follow when played back. You know, those pre-recorded "beep" sounds were EXACTLY what the internet sounded like when I first heard it. No, it's not a typing mistake. I heard the internet before I actually saw it. So much so that I still believe my cable internet is fake because it's always so quiet. No, I didn't hear the internet because I'm some kind of internet whisperer. We ALL heard the internet before we actually used it. Its arrival was heralded by a series of high-pitched screeches and digital buzzing that came through your telephone line. That's how

ITSEC AsiaITSEC Asia
|
Jul 09, 2023 — 9 minutes read
Guide to Open Source Intelligence (OSINT)
Technology

Guide to Open Source Intelligence (OSINT)

Tips
Hacks

OSINT can enable you to see further, and this can bring significant benefits to your business, such as protecting you from threats, providing insights into your competitors' strategies, and helping you understand partners and individuals before investing in them. Most importantly, OSINT is an important investigative tool for lawyers, detectives, law enforcement personnel, and anyone with a need to gather intelligence and investigate a subject. This article, the first in a series I'm writing on OSINT, will explain what OSINT is and how you can use OSINT to your professional advantage because we can all benefit from looking deeper and knowing more rather than just assuming. INTRODUCTION Over time, the internet has transformed the world into a very small place. The widespread access to the internet by billions of people worldwide for communication and the exchange of digital data has ushered in the "information age." In this information age, the term open-source intelligence (OSINT) refers to all publicly available information that you can see, and some parts that you can't

ITSEC AsiaITSEC Asia
|
Jul 10, 2023 — 8 minutes read
This is the Actual Reason Why Audit, Risk Assurance & Compliance Must Evolve Beyond the Checklist
Technology

This is the Actual Reason Why Audit, Risk Assurance & Compliance Must Evolve Beyond the Checklist

INTRODUCTION What if your organization passed its last compliance audit with flying colors and an attacker was already inside your network the entire time? According to the IBM Cost of a Data Breach Report 2024, the average time to identify a security breach now stands at 194 days: nearly half a year of undetected attacker activity operating freely within enterprise infrastructure. That figure does not represent a failure of compliance documentation. It represents a fundamental gap between what audit frameworks measure and what real-world adversaries actually do. For security leaders across Southeast Asia and beyond, this gap is the most urgent problem that modern Audit, Risk Assurance & Compliance programs need to solve. ITSEC Asia, the cybersecurity lead in Indonesia with operations spanning Singapore, Australia, and the UAE, has been working with organizations across the region to close exactly this gap before the next breach makes it unavoidable. Sources: IBM Cost of a Data Breach Report 2024 [https://www.ibm.com/reports/data-breach] THE COMPLIANCE ILLUSION: WHEN PASSING THE AUDIT MEANS NOTHING Audit and compliance frameworks were

Ajeng HadeAjeng Hade
|
Mei 13, 2026 — 5 minutes read

Receive weekly
updates on new posts

Subscribe
Logo
Indonesia

Noble House, Level 11
Jakarta 12950, Indonesia

Singapore

112 Robinson Road, #11-04
Singapore 068902

Australia

Level 22, 120 Spencer St Melbourne,
Victoria, 3004

United Arab Emirates

Golden Mile 4, Office 13, Floor M,
Palm Jumeirah, Dubai, United Arab Emirates

Mauritius

The Catalyst Building, Ground Floor, Lot 40,
Silicon Avenue Ebene, Mauritius

Services

Copyright © ITSEC 2026 | All Rights Reserved