ConsentFix: A New way to Phish for Tokens
A look at a new phishing campaign, ConsentFix which utilises click-fix style techniques to steal auth tokens.
Threat Hunting entra microsoft threat hunting
Microsoft Entra Token Theft - Part One: Offline Access and Conditional Access
A walkthrough of different Token Theft Scenarios with Detections
Threat Hunting entra microsoft threat hunting
Detecting Abuse of VSCode Remote Tunnels
Detecting abuse of VSCode Remote Tunnels for C2 and persistence by threat actors
Threat Hunting vscode remote tunnels detection
Microsoft Dev Tunnels: Tunnelling C2 and More
How threat actors abuse Microsoft Dev Tunnels for C2 communication and detection strategies
Pen Testing Threat Hunting dev tunnels c2 microsoft