Masters, 2021
Azure AD. Attack of the Default Config. Cloud Security
blog-post
Authors
Masters, J.
Year
2021
Abstract
There are several default configurations within the admin portal of Azure. The main affected area is Azure Active Directory (Azure AD) which is the primary area that controls user authentication, group memberships and privileges. The utilisation of these configurations can create several attack vectors that could be chained together to compromise the environment. The most significant issues concern app registrations that allow users to register and give permissions to third-party apps.
( https://www.pentestpartners.com/security-blog/azure-ad-attack-of-the-default-config/, accessed 30 Aug 2021)
Links
https://www.pentestpartners.com/security-blog/azure-ad-attack-of-the-default-config/, accessed 30 Aug 2021
Citation
Masters, J., 2021. Azure AD. Attack of the Default Config. Cloud Security. URL https://www.pentestpartners.com/security-blog/azure-ad-attack-of-the-default-config/ (accessed 30 Aug 2021).
Follow us on LinkedIn | Discuss on Slack | Support us with Patreon | Sign-up for a free membership.
This wiki is owned by Open Measure, a non-profit association. The original content we publish is licensed under a Creative Commons Attribution 4.0 International License.