Tiering Entra roles and application permissions based on known attack paths
An attempt to better understand the security implications of cloud administrative assets.
Recent Posts
Abusing PIM-related application permissions in Microsoft Graph - Part 4
Investigating legacy permissions.
Abusing PIM-related application permissions in Microsoft Graph - Part 3
Bypassing assignment, eligibility and activation requirements.
Abusing PIM-related application permissions in Microsoft Graph - Part 2
Escalating to Global Admin via eligible assignments.
Abusing PIM-related application permissions in Microsoft Graph - Part 1
Escalating to Global Admin via active assignments.