Tiering Entra roles and application permissions based on known attack paths
An attempt to better understand the security implications of cloud administrative assets.
All Posts
2024
Abusing PIM-related application permissions in Microsoft Graph - Part 4
Investigating legacy permissions.
Abusing PIM-related application permissions in Microsoft Graph - Part 3
Bypassing assignment, eligibility and activation requirements.
Abusing PIM-related application permissions in Microsoft Graph - Part 2
Escalating to Global Admin via eligible assignments.
Abusing PIM-related application permissions in Microsoft Graph - Part 1
Escalating to Global Admin via active assignments.
2023
Infecting container images to spread in large-scale container-based infrastructures
How trusting container images may allow threat actors to spread in container-based infrastructures like Kubernetes.
2022
ACSESSED: Cross-tenant network bypass in Azure Cognitive Search
How enabling a single vulnerable feature removed the entire network and identity perimeter around internet-isolated Azure Cognitive Search instances.
Managing vulnerabilities in software containers: how to avoid common pitfalls
How a few common misconceptions about vulnerability patching and detection in software containers can give a false sense of security, and cause you to potent...