Tag: Azure AD
-
BAADTokenBroker Abuses Microsoft Entra ID Device-Bound Keys for PRT Hijacking
BAADTokenBroker BAADTokenBroker is a post-exploitation tool designed to interact with Microsoft Entra ID device-bound keys. It can: Request the logged-on user’s PRT cookie Create a PRT cookie using supplied credentials Acquire a TGT and NT hash by abusing Entra Kerberos mechanisms Usage BAADTokenBroker provides the following commands: info: Retrieve Entra ID information get_token_blob: Dump cached…
-
EntraGoat: Deliberately Vulnerable Microsoft Entra ID Lab for Privilege Escalation Training
EntraGoat is a deliberately vulnerable Microsoft Entra ID infrastructure designed to simulate real-world identity security misconfigurations and attack vectors. EntraGoat introduces intentional vulnerabilities in your environment to provide a realistic learning platform for security professionals. It features multiple privilege escalation paths and focuses on black-box attack methodologies. EntraGoat uses PowerShell scripts and Microsoft Graph APIs to…
-
Microsoft Entra ID to Block All Third-Party Scripts on Login Page via Strict CSP
Microsoft is tightening the security of Microsoft Entra ID sign-ins, planning to block all third-party script execution on the authentication page and allow only Microsoft-owned domains and trusted inline scripts. This change, part of the Secure Future Initiative, is designed to cut off one of attackers’ most favored vectors — injecting malicious code directly into…
-
EntraFalcon: PowerShell Tool for Microsoft Entra ID Security Audits
EntraFalcon is a PowerShell-based assessment tool for pentesters, security analysts, and system administrators to evaluate the security posture of a Microsoft Entra ID environment. Designed for ease of use, EntraFalcon runs on PowerShell 5.1 and 7, supports both Windows and Linux, and requires no external dependencies or Microsoft Graph API consent. The tool helps uncover…
-
Azure AD supports guest collaboration with any account
Two years ago, when Microsoft began rolling out Azure AD, it allowed companies to collaborate with people in external organizations to access internal corporate documents and resources. However, the external personnel account can only use the Microsoft account or the Azure AD account at that time, otherwise, the user will pop up an error prompt…