issues
search
Cloud-Architekt
/
AzureAD-Attack-Defense
This publication is a collection of various common attack scenarios on Microsoft Entra ID (formerly known as Azure Active Directory) and how they can be mitigated or detected.
1.98k
stars
290
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
New Appendix "How to prevent lateral movement to Entra ID when your Active Directory has fallen"
#51
crmhh
closed
5 days ago
0
Update EidscaConfig.json
#50
BakkerJan
closed
2 weeks ago
0
Update EidscaConfig.json
#49
BakkerJan
closed
2 weeks ago
0
Update EidscaConfig.json
#48
BakkerJan
closed
2 weeks ago
0
Cant add roles
#47
kinomakino
opened
1 month ago
2
Fixed: isUsableOnce value
#46
RobinDadswell
closed
2 months ago
0
Update isUsableOnce value for TemporaryAccessPass
#45
RobinDadswell
closed
2 months ago
0
Instructions lack detail
#44
over2under3
opened
3 months ago
0
Errors executing Logic App
#43
over2under3
closed
3 months ago
0
Authorization policy - allowedToUseSSPR
#42
BakkerJan
opened
4 months ago
0
AADSCA v3 Release
#41
Cloud-Architekt
closed
4 months ago
0
AADSCA.workbook
#40
PiusO
opened
7 months ago
1
Coverage of SoftMatch and other Directory Synchronization Settings
#39
Cloud-Architekt
opened
1 year ago
0
Bug fixes for AADSCA v2
#38
mpitkaranta
closed
1 year ago
0
Release of AADSCA v2
#37
Cloud-Architekt
closed
1 year ago
0
AADSCA_CL table missing.
#36
wiznat08
closed
1 year ago
0
Importing Workbook
#35
MikJagger
closed
1 year ago
4
Fixed description of managed identity
#34
Cloud-Architekt
closed
1 year ago
0
managed identity not created
#33
DeanGross
closed
1 year ago
3
Added chapter 6 - AADSCA and documentation
#32
Cloud-Architekt
closed
1 year ago
0
Added chapter 6 (AADSCA) for release
#31
Cloud-Architekt
closed
1 year ago
0
Description update for RT
#30
samilamppu
closed
1 year ago
0
Updated description
#29
Cloud-Architekt
closed
1 year ago
0
Minor updates to attack scenario description
#28
Cloud-Architekt
closed
1 year ago
0
Added attack scenarios for refresh token
#27
Cloud-Architekt
closed
1 year ago
0
2022 Update on Consent Grant Attack chapter
#26
Cloud-Architekt
closed
1 year ago
0
Broken link
#25
DeanGross
closed
1 year ago
1
Updated version of appendix "Identity Security Monitoring"
#24
Cloud-Architekt
closed
1 year ago
0
Mitre update
#23
samilamppu
closed
1 year ago
0
Updated intro chapter
#22
Cloud-Architekt
closed
1 year ago
0
Introduction updated
#21
Cloud-Architekt
closed
1 year ago
0
Updated introduction
#20
Cloud-Architekt
closed
1 year ago
0
New chapter about replaying primary refresh token
#19
Cloud-Architekt
closed
1 year ago
0
Init
#18
samilamppu
closed
1 year ago
0
Create mappings to MITRE ATT&CK Framework
#17
dpramone
closed
1 year ago
2
Chapter aadc
#15
samilamppu
closed
2 years ago
0
Updated id mon ignite21
#14
Cloud-Architekt
closed
2 years ago
0
Password spray updated 2021
#13
samilamppu
closed
2 years ago
0
Password spray updated - 2021
#12
samilamppu
closed
2 years ago
0
Technical limitations of consent policies
#11
commakoerschgen
opened
2 years ago
0
Updated version of Identity Security Monitoring
#10
Cloud-Architekt
closed
2 years ago
0
Updated version of Consent Grant
#9
samilamppu
closed
2 years ago
0
Added "Service Principal and ADO" playbook
#8
Cloud-Architekt
closed
3 years ago
0
Jsa review2
#7
jsa2
closed
3 years ago
0
Jsa review
#6
jsa2
closed
3 years ago
0
Update ConsentGrant.md
#5
12Knocksinna
closed
3 years ago
0
What about Teams Apps?
#4
DeanGross
opened
3 years ago
1
edits
#3
jsa2
closed
3 years ago
0
added Illicit Consent Grant Attack scenario
#2
Cloud-Architekt
closed
3 years ago
0
Version 0
#1
Cloud-Architekt
closed
3 years ago
0
Next