Reference Slides / Notes

AttackingAzureAD-34-42.pdf

Talks

• https://www.youtube.com/watch?v=4NpT78zxZEo
  • https://aadinternals.com/talks/
• https://blog.pwnedlabs.io/mapping-attack-surface-for-azure-initial-access
• https://github.com/Arcanum-Sec/msftrecon

Tools

• MsftRecon : https://github.com/Arcanum-Sec/msftrecon ( Detects MDI)

References

• Using Sharepoint for emails validations

Notes