Udemy, Coursera, 2U/edX Face Lawsuits Over Meta Pixel Use

Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Attack Scenarios Abusing Azure Active Directory

Hack In The Box Security Conference via YouTube

Start learning Write review

Overview

The course focuses on understanding and exploiting vulnerabilities in Azure Active Directory (AAD) and Office 365 services. Participants will learn about Azure AD theory, privilege escalation techniques, and attacks to gain control over Azure IaaS services and Office 365. The course covers concepts like users, groups, role definitions, applications, and service principals. Mitigation recommendations and best practices for securing Azure AD are also provided. The intended audience includes information security professionals, red teamers, penetration testers, and individuals interested in Azure security. The teaching method involves a combination of theoretical explanations, demonstrations of attack scenarios, and practical recommendations for securing Azure AD.

Syllabus

Intro
Resources
Resource Group
Management Groups
Architecture Example
Azure Resource Manager Role Based Access Control (RBAC)
Azure Active Directory (AAD) Fundamentals
Application API Access
Applications & Service Principals Authentication
Azure Active Directory Roles
Gaining Foothold - AD Connect Abuse
Internal Reconnaissance Phase
Azure Active Directory Role Assignment Enumeration
Azure Application Registration Graph App Roles Permissions
Attack Scenarios
Azure Command Line Tools
From Azure Active Directory to the Resource Manager
User Updates Application Secret
from Resource Manager to Azure Active Directory
Azure Function App - Architecture
List Function App Host Keys
OneDrive App Registration App Roles Permission
From one on-prem Machine to Another on- prem Machine
Prerequisites
Azure Tokens
Reset Application Password
Enumerating the Intune Application Permissions
Intune App graph app role permissions
Intune Script Creation
Assign Intune Script to a Group
Best Practice - Logs Logs Logs
Least Privilege Concept
Azure Resource Manager RBAC Permissions - Least Privilege
Privileged Identity Management - PIM
Azure Active Directory Identity Protection
Conditional Access
XMGoat - Compromise the Subscription

Taught by

Hack In The Box Security Conference

Reviews

Start your review of Attack Scenarios Abusing Azure Active Directory

Start learning

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.