Christopher Brumm
@cbrhh.bsky.social
Unfortunately, that was only a matter of time!
This video combines two of the most dangerous tools at the moment associated with phishing - and it's surprisingly simple!
www.youtube.com/watch?v=Dp1z...
Do we have defense options? Read on 👇
This video combines two of the most dangerous tools at the moment associated with phishing - and it's surprisingly simple!
www.youtube.com/watch?v=Dp1z...
Do we have defense options? Read on 👇
TokenSmith Meets Evilginx: Token Theft Combined with Entra Conditional Access Bypass
YouTube video by SYNACK Time
www.youtube.com
January 17, 2025 at 7:21 AM
Unfortunately, that was only a matter of time!
This video combines two of the most dangerous tools at the moment associated with phishing - and it's surprisingly simple!
www.youtube.com/watch?v=Dp1z...
Do we have defense options? Read on 👇
This video combines two of the most dangerous tools at the moment associated with phishing - and it's surprisingly simple!
www.youtube.com/watch?v=Dp1z...
Do we have defense options? Read on 👇
Global Secure Access and Token Replay - a thread...
Did you know that "Microsoft Entra Internet Access for Microsoft" is included in your Entra ID P1 license?
-> learn.microsoft.com/en-us/entra/...
1/4
Did you know that "Microsoft Entra Internet Access for Microsoft" is included in your Entra ID P1 license?
-> learn.microsoft.com/en-us/entra/...
1/4
What is Global Secure Access? - Global Secure Access
Learn how Microsoft's Security Service Edge (SSE) solution, Global Secure Access, provides network access control and visibility to users and devices inside and outside a traditional office.
learn.microsoft.com
January 10, 2025 at 7:09 PM
Global Secure Access and Token Replay - a thread...
Did you know that "Microsoft Entra Internet Access for Microsoft" is included in your Entra ID P1 license?
-> learn.microsoft.com/en-us/entra/...
1/4
Did you know that "Microsoft Entra Internet Access for Microsoft" is included in your Entra ID P1 license?
-> learn.microsoft.com/en-us/entra/...
1/4
Reposted by Christopher Brumm
gist.github.com/CloudProtect...
This one does a very good job because it considers if the device is joined/registered any only looks at the AADGraph. For this resource its not normal that a non-registered device is accessing it
This one does a very good job because it considers if the device is joined/registered any only looks at the AADGraph. For this resource its not normal that a non-registered device is accessing it
Use Defender XDR advanced hunting query capabilities to detect possible device compliance bypass attacks for Entra ID Conditional Access according to the vulnerability disclosed by Yuya Chudo (https:/...
Use Defender XDR advanced hunting query capabilities to detect possible device compliance bypass attacks for Entra ID Conditional Access according to the vulnerability disclosed by Yuya Chudo (http...
gist.github.com
January 9, 2025 at 7:30 AM
gist.github.com/CloudProtect...
This one does a very good job because it considers if the device is joined/registered any only looks at the AADGraph. For this resource its not normal that a non-registered device is accessing it
This one does a very good job because it considers if the device is joined/registered any only looks at the AADGraph. For this resource its not normal that a non-registered device is accessing it
Reposted by Christopher Brumm
I hope every SOC is monitoring incoming emails for signs of anomalous incoming mail amounts to your users. If this happens the execution of any RMM by the target user is a high alert you should follow up on.
December 19, 2024 at 10:24 PM
I hope every SOC is monitoring incoming emails for signs of anomalous incoming mail amounts to your users. If this happens the execution of any RMM by the target user is a high alert you should follow up on.
Reposted by Christopher Brumm
🔊 @cbrhh and I will be part of this year's Experts Live DK with our session: The state of passkey in 2025
#ELDK2025
conference.expertsli...
#ELDK2025
conference.expertsli...
December 19, 2024 at 2:52 PM
🔊 @cbrhh and I will be part of this year's Experts Live DK with our session: The state of passkey in 2025
#ELDK2025
conference.expertsli...
#ELDK2025
conference.expertsli...
Great news! 🎉
I have the opportunity to speak in March at the #eldk2025 in Copenhagen!
I will do a comparison of Entra Private Access and a classic VPN solution and show why Global Secure Access is much closer to my understanding of Zero Trust Network Access.
Hope to see you there!
I have the opportunity to speak in March at the #eldk2025 in Copenhagen!
I will do a comparison of Entra Private Access and a classic VPN solution and show why Global Secure Access is much closer to my understanding of Zero Trust Network Access.
Hope to see you there!
December 19, 2024 at 5:03 PM
Great news! 🎉
I have the opportunity to speak in March at the #eldk2025 in Copenhagen!
I will do a comparison of Entra Private Access and a classic VPN solution and show why Global Secure Access is much closer to my understanding of Zero Trust Network Access.
Hope to see you there!
I have the opportunity to speak in March at the #eldk2025 in Copenhagen!
I will do a comparison of Entra Private Access and a classic VPN solution and show why Global Secure Access is much closer to my understanding of Zero Trust Network Access.
Hope to see you there!