Tech Brandon
@TechBrandon
Followers
1K
Following
7K
Media
309
Statuses
3K
Father. Engineer. Learner. Lurker. AD, Entra/Azure & enterprise security specialist. Senior Security Consultant @trustedsec. Fellow Human Being.
Joined August 2011
Hello friends! I'm doing a quick fundraiser and head shave for my favorite charity @StBaldricks . I'd love if you'd help me reach my goal.
2
3
7
Just updated my CA Policy reporting tool to support JSON files provided by @DanielatOCN. No more Graph permissions requirement. Download all the JSON files, point my script to the folder, and you'll get the same report as you would have via Graph.
github.com
Scripts to enumerate and report on Entra Conditional Access - techBrandon/CAPs
𝐂𝐀 𝐏𝐨𝐥𝐢𝐜𝐲 𝐂𝐨𝐩𝐢𝐞𝐫 is now on the Chrome Web Store! Check out the instructions and install link here > With CA Policy Copier, you can quickly copy or download individual Conditional Access policies in JSON format, which can serve as a temporary
0
3
15
RT @mzbat: Attending Blue Team Con in Chicago this weekend and need some help with your resume, interview skills, and/or career guidance? R….
0
12
0
This is why you need at least 1 policy that applies to all resources. No exceptions.
Little known fact. Did you know that excluding just one app from an 'All Apps' conditional access policy may let other apps through? . @fabian_bader explains in this week's Entra Chat.
0
0
5
I wanna hear more "raw dogging" stories. What you all got?.
@HackingLZ I remember raw dogging the internet back in the day. No router. Just plug right into the modem. Then some one sent me a systemwide message from my computer to my computer "hey, nice computer lol" Then I learned the risks of unprotected internet.
0
0
1
RT @DebugPrivilege: I'm hiring a Principal Security Researcher with rock-solid knowledge in Active Directory, Entra ID, and security resear….
ats.rippling.com
Position Overview Netwrix is seeking a seasoned Principal Security Researcher with deep expertise in Active Directory and Entra ID t...
0
33
0
You're not going to want to miss this.
Many invest in penetration testing but skip a key step in their #ActiveDirectory to significantly reduce the attack surface. Join @PyroTek3.and @paulsems for our next #webinar on September 10 and learn what you're missing. Register now!
0
1
3
I don't know why it never occurred to me before. 🤔 "A Grant type policy blocks access, but in a positive way in that it tells the client what it needs to do to get access – become compliant or pass MFA etc. – whereas a Block type policy gives no feedback and just blocks access.".
One thing I always recommend when it comes to designing conditional acesss policies. Never use a block policy when the same outcome can be achieved with a grant policy. This blog post by Rakhesh is a good walthrough why. 👇.
1
1
12
RT @techspence: Let’s make Active Directory security education available to all!. List your favorite Active Directory security resources.….
0
103
0
Gosh damnit @JackRhysider . No joke, you just called my mom. Great storytelling, as usual. Wish I was there to hear it in person.
It’s a holiday miracle!. Keynote presenter Jack Rhysider, of Darknet Diaries, gave an incredible presentation. You showed great respect the conference, and now we’re able to share the full presentation. @JackRhysider @DarknetDiaries.
0
0
2
My talk, Finding Holes in Conditional Access Policies, from @CypherCon is live. This was such a fun conference to be a part of. Maybe I'll see you there next year.
1
18
77
RT @NathanMcNulty: Had a random like on this, guess it's a good reminder especially since some of the passkey rollout content was updated i….
0
10
0
This is a well written attack path that Nathan takes to the next level with some really next-level mitigation advice. Guys, this is free gold! 🥇.
This is a great read, and it has some good mitigations listed. There are additional recommendations I would offer that I did not see mentioned, so I'll do my best to expound on this without giving away too much (you need to go read the article) :P
1
6
18
I am back to posting to in my free time (which I have again). I plan on adding new content relating to Active Directory & Azure AD (now Entra ID). First up is "Entra & Azure Managed Access Revisited". This article expands on one I wrote years ago about
0
0
4
RT @the_jvan: Packing up the last few tidbits for tonight's @SoberInCyber #SoberSpeakeasy! Join us at 7 PM at the Mob Museum (pre-registrat….
0
5
0
So many out there celebrating another year of MVP status and here I am just happy my developer subscription keeps getting renewed. 😂.
0
0
2
I recommend the sleeveless if you're heading to Vegas.
Whether you're team #SoberSquad or #SupportSquad, get your merch order in soon so your gear arrives before #HackerSummerCamp! . A portion of the proceeds from every order comes back to #SoberInCyber as a donation. Place your order at
0
0
1