In Part 1 of my Intune Attack Paths series, I discuss the fundamental components and mechanics of Intune that lead to the emergence of attack paths: https://posts.specterops.io/intune-attack-paths-part-1-4ad1882c1811
Andy Robbins
- 1.7K Followers
- 131 Following
- 38 Posts
BloodHound, BloodHound Enterprise, SpecterOps
With thanks and acknowledgement to:
Chris Thompson - https://x.com/_Mayyhem
Dirk-jan Mollema - https://bsky.app/profile/dirkjanm.io
Adam Chester - https://bsky.app/profile/xpnsec.com
Brett Hawkins - https://bsky.app/profile/h4wkst3r.bsky.social
Thibault Van Geluwe de Berlaere - https://www.linkedin.com/in/thibault-van-geluwe-de-berlaere-534b8713b
Karl M. - https://www.linkedin.com/in/karl-m-937b8b11/
Corné de Jong - https://www.linkedin.com/in/corn%C3%A9-de-jong-44000313
Dr. Nestori Syynimaa - x.com/DrAzureAD
Rudy Ooms - x.com/Mister_MDM
Lee Holmes 
Console user and have an Azure subscription? Give this a go. Having ai.exe in the console rather than locked behind a web app opens up incredible opportunities.
A quick tour of new functions in BARK that support Azure Key Vault tradecraft research, including a walk-through of how an adversary may chain these functions together as part of an attack path: https://posts.specterops.io/azure-key-vault-tradecraft-with-bark-24163abc8de3
Azure Key Vault Tradecraft with BARK - Posts By SpecterOps Team Members
This post details the existing and new functions in BARK that support adversarial tradecraft research relevant to the Azure Key Vault service. The latter part of the post shows an example of how a…
I couldn't find any PowerShell examples of encrypting/decrypting data w/ Azure Key Vault keys, so I made some:
Protect-StringWithAzureKeyVaultKey
Unprotect-StringWithAzureKeyVaultKey
https://github.com/BloodHoundAD/BARK/commit/e1c82a1fed4678a5392113307f96338ca36ba64a
Explanatory blog post coming soon.
BlueHat talks are up! https://www.youtube.com/playlist?list=PLXkmvDo4MfuttJeOeu9UGJQJOaN_eb0aO
BlueHat 2024
How's it going, y'all?
noodlemancerFediverse, due to my wife's thyroid cancer returning we are relocating to Seattle (from Illinois) -- where we can receive familial support and she can get treatment.
To that end, I'm looking for #infosec jobs in the area, but I'm looking to step back from what I've been doing so I have a bit more flexibility to help her and our son. So, hybrid or even full remote, but probably not a senior level position.
I've been consulting and that's been good, but it's too unsteady and too much work on unknown schedules to continue while she is undergoing treatment. I'll also be applying through standard channels, but I hope someone here can lend a hand.
We are releasing BloodHound CE on Tuesday August 8.
This 30 second video shows you the *dramatic* performance improvements over Legacy BloodHound: https://www.youtube.com/watch?v=bqMmYi7jaMI
BloodHound CE Performance Improvement Over Legacy BloodHound
Today: join me and Rohan Vazarkar in the BloodHound Slack from 11AM to Noon Pacific for an AMA regarding the upcoming BloodHound CE release.
Not in the BloodHound Slack yet? Get your invite here: https://ghst.ly/BHSlack