Tech Brandon
@TechBrandon
Father. Engineer. Learner. Lurker. AD, Entra/Azure & enterprise security specialist. Senior Security Consultant @trustedsec. Fellow Human Being.
You might like
Hello friends! I'm doing a quick fundraiser and head shave for my favorite charity @StBaldricks . I'd love if you'd help me reach my goal. stbaldricks.org/participants/m…
I just learned that there's a drop-down at the top of these articles. If you click edit, you can see the git repo for the article. More importantly, you can see the commit history for changes made over time. This is helpful to identify when recommendations changed.
I love that Microsoft's Entra ID documentation has a "Download PDF" option. learn.microsoft.com/en-us/entra/id… Kinda crazy that the "authentication" PDF is 1,400 pages long though the "hybrid identity" PDF is almost 3,000 pages! Yes, I have some reading to do...
Last chance to check out the @SoberInCyber booth at @WWHackinFest! Stop by before 4:00 PM to grab some swag, make a few crafts, and learn about our nonprofit's goal to increase the number of alcohol-free networking options in #InfoSec. #WildWestHackinFest #WWHF #cybersecurity
This! If you're using risk policies (and I hope you are) then this is the benchmark.
Entra ID Protection doesn’t silently forgive risk - it tracks Medium and High events until you do something about them. 🔹 User Risk → usually means stolen or replayed creds. Mitigate with an enforced password reset, not a ticket comment. 🔹 Sign-in Risk → suspicious session,…
This is straight out of Mr. Robot.
Weird stuff going on. This is a CRAZY anime arc. I beg you to read this post. This shit is crazy. Check this shit out June 16th, 2025: @phrack reports suspected offensive state-sponsored activity from China and/or North Korea targeting South Korea. They notify KR-CERT (Defense…
Added my slide decks from this weekend to github in case you're interested. github.com/techBrandon/TE…
Going to TEC 2025 Minneapolis next week? Check out @techBrandon's talk on September 30 at 10:30AM CDT. He'll be presenting his talk, "Know Thy Enemy: A Crash Course on Attacking and Defending Active Directory in 2025". Don't miss it! events.bizzabo.com/TheExpertsConf…
Tomorrow is the last day. If your Authentication methods doesn't look like this, I hope it's just because you are using Dark Mode ;)
For anyone that hasn't migrated their authentication methods in Entra yet, I recorded a guide with some common gotchas I'm really just trying to learn OBS and my gear, sorry for the potato quality, it's probably not Twitter's fault :p Working on getting better at this format ;)
Just watched the first 30m of K pop demon hunters again. I'm still confused and now have 3 songs stuck in my head at the same time.
Be sure to catch @techBrandon's talk on October 1 at 3:00PM CDT if you're going to TEC 2025! He'll be giving his talk, "Abusing Holes in Conditional Access". Check it out! events.bizzabo.com/TheExpertsConf…
Going to TEC 2025 Minneapolis next week? Check out @techBrandon's talk on September 30 at 10:30AM CDT. He'll be presenting his talk, "Know Thy Enemy: A Crash Course on Attacking and Defending Active Directory in 2025". Don't miss it! events.bizzabo.com/TheExpertsConf…
Folks, I'm super excited to announce a three part webinar series from Microsoft that involves some of your favorite folks from the Entra community. @NathanMcNulty and @rucam365 will be joining me and others from Microsoft to talk about implementing Zero Trust for identity and…
Of course this is "working as intended"
Wrote a quick blog as more of a rant this week. Found an interesting interaction with Active Directory delete permissions and the accidental deletion protections. Maybe you'll enjoy reading about how a simple question turned into a quest for truth. techbrandon.github.io/active%20direc…
Just updated my CA Policy reporting tool to support JSON files provided by @DanielatOCN. No more Graph permissions requirement. Download all the JSON files, point my script to the folder, and you'll get the same report as you would have via Graph. github.com/techBrandon/CA…
𝐂𝐀 𝐏𝐨𝐥𝐢𝐜𝐲 𝐂𝐨𝐩𝐢𝐞𝐫 is now on the Chrome Web Store! Check out the instructions and install link here > ourcloudnetwork.com/export-conditi… With CA Policy Copier, you can quickly copy or download individual Conditional Access policies in JSON format, which can serve as a temporary…
This is why you need at least 1 policy that applies to all resources. No exceptions.
Little known fact. Did you know that excluding just one app from an 'All Apps' conditional access policy may let other apps through? @fabian_bader explains in this week's Entra Chat.
I wanna hear more "raw dogging" stories. What you all got?
I remember raw dogging the internet back in the day. No router. Just plug right into the modem. Then some one sent me a systemwide message from my computer to my computer "hey, nice computer lol" Then I learned the risks of unprotected internet.
I'm hiring a Principal Security Researcher with rock-solid knowledge in Active Directory, Entra ID, and security research. Interested in working with me? Go apply here: ats.rippling.com/netwrix-corpor…
You're not going to want to miss this.
Many invest in penetration testing but skip a key step in their #ActiveDirectory to significantly reduce the attack surface. Join @PyroTek3 and @paulsems for our next #webinar on September 10 and learn what you're missing. Register now! trustedsec.zoom.us/webinar/regist…
United States Trends
- 1. Horford 1,035 posts
- 2. Will Richard 4,024 posts
- 3. #AEWDynamite 18.6K posts
- 4. #Survivor49 3,109 posts
- 5. Russell Westbrook 1,498 posts
- 6. Klay 6,747 posts
- 7. #ChicagoPD 1,029 posts
- 8. Tyler Bertuzzi N/A
- 9. #AmphoreusStamp 2,852 posts
- 10. #SistasOnBET 2,226 posts
- 11. Godzilla 30K posts
- 12. Podz 1,488 posts
- 13. Dalton Knecht N/A
- 14. Unplanned 4,805 posts
- 15. Pat Spencer N/A
- 16. Nico Harrison N/A
- 17. Spencer Knight N/A
- 18. Binnington 2,375 posts
- 19. Harrison Barnes N/A
- 20. Jovic 1,045 posts
You might like
-
Josh
@passthehashbrwn -
Red Siege Information Security
@RedSiege -
strandjs - [email protected]
@strandjs -
nyxgeek
@nyxgeek -
Wild West Hackin' Fest
@WWHackinFest -
Melvin langvik
@Flangvik -
SkelSec
@SkelSec -
rootsecdev
@rootsecdev -
Matt Zorich
@reprise_99 -
Jim Sykora
@JimSycurity -
Christopher Peacock
@SecurePeacock -
Stephan Berger
@malmoeb -
Itamar Golan 🤓
@ItakGol -
DebugPrivilege
@DebugPrivilege -
Tim Medin @timmedin.bsky.social 🇺🇦
@TimMedin
Something went wrong.
Something went wrong.