Death from Above: Lateral Movement from Azure to On-Prem AD

0
568

Death from Above: Lateral Movement from Azure to On-Prem AD

Intro

I’ve been looking into Azure attack primitives over the past couple of months to gain a better understanding of how the system works, what privileges and permissions can be abused, what limitations may exist, and what attack paths present themselves in real environments. I’ve kept my eyes open for attacks that allow the following:

Lateral movement from an on-premises (on-prem) device/user context into Azure

Privilege escalatio…

Read More