Google, IBM & Meta Certificates — All 10,000+ Courses at 40% Off
One annual plan covers every course and certificate on Coursera. 40% off for a limited time.
Get Full Access
Explore the modernization of ROADRecon, an open-source Azure AD enumeration tool, in this 24-minute conference talk that addresses the challenges posed by Microsoft's deprecation of the Azure AD Graph API. Learn how security consultant Thomas Byrne from Reversec rebuilt this essential reconnaissance tool to work with Microsoft's modern Entra environment and Graph API. Discover the intricacies of OAuth implementation in Entra, including how first-party applications and pre-consented permissions can be exploited for offensive security purposes. Examine the critical differences between Azure AD Graph and Microsoft Graph APIs and understand their impact on both offensive and defensive security strategies. Gain insights into enhanced reconnaissance capabilities through lesser-known APIs such as the Ibiza API, which can provide equivalent methods for fetching tenant information without generating logs. Master the technical challenges of API migration while exploring how attackers can bypass security protections using legitimate Microsoft Graph functionality. Understand detection strategies for modern security tooling like ROADRecon, including the complexities of monitoring at scale and identifying usage of undocumented APIs. Acquire practical knowledge about preventative and detective controls that organizations can implement to mitigate malicious API usage while maintaining legitimate security assessment capabilities.
