Masters, 2021

Azure AD. Attack of the Default Config. Cloud Security

blog-post

Authors

Masters, J.

Year

2021

Abstract

There are several default configurations within the admin portal of Azure. The main affected area is Azure Active Directory (Azure AD) which is the primary area that controls user authentication, group memberships and privileges. The utilisation of these configurations can create several attack vectors that could be chained together to compromise the environment. The most significant issues concern app registrations that allow users to register and give permissions to third-party apps.

( https://www.pentestpartners.com/security-blog/azure-ad-attack-of-the-default-config/, accessed 30 Aug 2021)

Links

Citation

Masters, J., 2021. Azure AD. Attack of the Default Config. Cloud Security. URL https://www.pentestpartners.com/security-blog/azure-ad-attack-of-the-default-config/ (accessed 30 Aug 2021).


Follow us on LinkedIn | Discuss on Slack | Support us with Patreon | Sign-up for a free membership.


This wiki is owned by Open Measure, a non-profit association. The original content we publish is licensed under a Creative Commons Attribution 4.0 International License.