Skip to end of banner
Go to start of banner

Masters, 2021

Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 2 Current »

Azure AD. Attack of the Default Config. Cloud Security

blog-post

Authors

Masters, J.

Year

2021

Abstract

There are several default configurations within the admin portal of Azure. The main affected area is Azure Active Directory (Azure AD) which is the primary area that controls user authentication, group memberships and privileges. The utilisation of these configurations can create several attack vectors that could be chained together to compromise the environment. The most significant issues concern app registrations that allow users to register and give permissions to third-party apps.

( https://www.pentestpartners.com/security-blog/azure-ad-attack-of-the-default-config/, accessed 30 Aug 2021)

Citation

Masters, J., 2021. Azure AD. Attack of the Default Config. Cloud Security. URL https://www.pentestpartners.com/security-blog/azure-ad-attack-of-the-default-config/ (accessed 30 Aug 2021).

  • No labels

Follow us on LinkedIn | Discuss on Slack | Support us with Patreon | Sign-up for a free membership.

This wiki is owned by Open Measure, a non-profit association. The original content we publish is licensed under a Creative Commons Attribution 4.0 International License.