Viimeisimmät artikkelit
app service AZSK Azure express-validator expressJS HelmetJS NodeJS Web Application Firewall web apps
Defence in depth: Securing Azure App Service with Azure Front Door WAF, NodeJS runtime Security enhancements tested with OWASP ZAP
I’ve been recently playing around with Azure Front Door, and it’s WAF Policies. Here are some notes I decided toLue lisää
Developer experience on steroids with Azure AD App Proxy and Azure Functions Host
I’ve been using Azure AD App Proxy a lot in my time and I continue finding it useful in newLue lisää
TOP3 Picks from Azure Security Center Standard
I was recently discussing with a another Azure Aficionado about value proposition of Security Center Standard in comparison to stayingLue lisää
Azure AD B2X is here ! (yes B2X, not B2C or B2B) – Debugging and insights
Now that we are past the click-bait title (B2X), lets dig into Azure AD External Identities which was unveiled atLue lisää
AAD App Registrations custom claims grant-type:jwt-bearer Group Claims NodeJS OAuth2 SAML saml1_1-bearer
Deep Diver – Azure AD Groups/Roles claims for developers and IT pro’s with code examples
Background Many enterprise applications rely on group /role information to be passed on assertions for authorization, and further role decisions.Lue lisää
AAD Azure AD Device Login AzureAD Conditional Access Exchange HMA Hybrid Hybrid Modern Authentication MFA OAuth2 Office 365 Password Sync Productivity SAML
Lab: Zero Trust Exchange 2016 with AAD oAuth2 and SAML (KEMP)
Welcome to the lab post regarding implementing ”Zero Trust”, or identity perimeter-ish controls for your’re hybrid environment: this part isLue lisää
Don’t try this at home (or how to enable Core Server Remote Management for AD FS GUI)
I’ve been running AD FS on Core servers for some time now, mostly because I like the smaller footprint and centralizedLue lisää
Avoiding Consent to MS Graph PowerShell with Azure CLI: A Step Towards Simpler Operations and Adversary Simulation
When working with Microsoft Graph PowerShell, it’s often necessary to consent to specific scopes, which requires administrative approval. However, withLue lisää
List NPM installed and compare if there are new versions
I had to document this somewhere. Got the tip from npm outdated from Chat-gtp
Cheat Sheet – Azure AD – how application and delegated permissions are exposed in MS Graph and Logs?
While there is some great research and documentation available on this subject already (especially for illicit consent grants 1,2) I’veLue lisää
Research for CAOptics – Azure AD Conditional Access – Investigating Guest user conditions parity between new and old policies
Backround I wanted to document some research related to updating Guest condition features of CaOptics – Feedback appreciated if youLue lisää
Public Disclosure: Databricks – Former standard clusters & admin privilege escalation
This is linking post to article I co-wrote with Databricks. Original post: https://www.databricks.com/blog/2022/10/10/admin-isolation-shared-clusters.html while back I was researching another avenueLue lisää
SecureCloudBlog 