all InfoSec news
Abusing Azure Active Directory: From MFA Bypass to Listing Global Administrators
Sept. 6, 2023, 6:27 p.m. | Black Hat
Black Hat www.youtube.com
Azure AD is leveraging Microsoft's not-so-well-documented Evolved Security Service (eSTS). eSTS hides multiple security token services so that users see only Azure AD.....
By: Sravan Akkaram , Nestori Syynimaa (DrAzureAD)
Full Abstract and Presentation Materials:
https://www.blackhat.com/asia-23/briefings/schedule/#abusing-azure-active-directory-from-mfa-bypass-to-listing-global-administrators-30860
abusing access access management active directory administrators adoption apt29 azure azure active directory azure ad bypass directory global high iam identity identity and access identity and access management listing management mfa microsoft nobelium organizations rate security service solution sponsored state target threat threat actors
More from www.youtube.com / Black Hat
Black Hat Asia 2024 Highlights
3 weeks, 4 days ago |
www.youtube.com
Startup Spotlight Competition at Black Hat
1 month, 1 week ago |
www.youtube.com
Locknote: Conclusions and Key Takeaways from Day 2
1 month, 4 weeks ago |
www.youtube.com
Locknote: Conclusions and Key Takeaways from Day 1
1 month, 4 weeks ago |
www.youtube.com
Keynote: My Lessons from the Uber Case
1 month, 4 weeks ago |
www.youtube.com
My Invisible Adversary: Burnout
2 months ago |
www.youtube.com
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Senior Security Researcher - Linux MacOS EDR (Cortex)
@ Palo Alto Networks | Tel Aviv-Yafo, Israel
Sr. Manager, NetSec GTM Programs
@ Palo Alto Networks | Santa Clara, CA, United States
SOC Analyst I
@ Fortress Security Risk Management | Cleveland, OH, United States