Back to directory
WRITEUP #598

Entra ID Connect Arbitrary Password Overwrite

CloudPost-exploitationActive DirectoryAzure AD
by@nullg0re(Anthony Larcher-Gore)
Program
Microsoft
Published
Jan 4, 2024
Added to HackDex
Feb 1, 2024
Read Full Writeuphttps://nullg0re.com/2024/01/entra-id-connect-arbitrary-password-overwrite/
RELATED WRITEUPS
The Hunt for ALBeast: A Technical Walkthrough
CloudAWS ALB
Addressed AWS defaults risks: OIDC, Terraform and Anonymous to AdministratorAccess
CloudOIDC
Double Agent: Exploiting Pass-through Authentication Credential Validation in Azure AD
CloudPrivilege escalation
SCCMSecrets.py: Exploiting SCCM Policies Distribution For Credentials Harvesting, Initial Access And Lateral Movement
OtherActive Directory
Bucket Monopoly: Breaching AWS Accounts Through Shadow Resources
CloudRCE

Built with ❤️ by Shubham Rawat