Azure Devops – Update network restricted App Service via Microsoft-hosted Azure DevOps agent
Most typical reason I see that the SCM endpoint is not secured on App Services is that these apps areLue lisää
Kategoria: Uncategorized
Azure AD Workload Federation anywhere?
I decided to write an post into creation of Azure AD Workload Identity using the option ’Workloads running in computeLue lisää
Highly experimental – Bypassing trusted Device requirements for Azure CLI in restricted environments where API’s are only available for browser sessions
Some environments require trusted device to access API’s on mobile and desktop clients (which AZ CLI is categorized as) –Lue lisää
Bypassing sign-in frequency requirements for Conditional Access on 3rd party clients
Based on recent testing SIF (sign-in-frequency) enforcement can be bypassed when refresh token is available for exchange¹ on third party²Lue lisää
Azure AD Cross-tenant attacks via multi-tenant implants (servicePrincipals)
I decided to do short write-up since I’ve been getting lot of questions about this attack type originally discovered byLue lisää
SecureCloudBlog 