Dr. Nestori Syynimaa (@DrAzureAD) on X (original) (raw)

Principal Identity Security Researcher at Microsoft. Ex-Secureworks. (MSc, MEng, PhD, CITP, CCSK). And yes, opinions are my own ;)

• Pinned
  
  
• 
  
• 
  Okay, I just read JDs "scientific" paper. TL;DR "CitizenLab has not shared all evidence publicly, so their research is fake." According to JD, one needs to be at least a PhD student to be able to "asses" his research. So here we go.
• 
  
• 
  
• 
  
• 
  Big news on the work front! Today is my last day at
  @Secureworks
  , and I’d like to thank you for the opportunity to work with such fantastic people to make the world safer! My journey continues in January with #Microsoft as a Principal Identity Security Researcher. I’ll be working
• 
  
• 
  To celebrate my new #AADInternals blog, I also published an online OSINT tool at aadinternals.com/osintIt allows to get tenant information using: * Tenant ID * Domain name * Email/UPN The domain list includes links to ease the gathering of further information. Enjoy!
  
• 
  This hurts in so many levels..
  
• 
  Just got my first block ever! From a known #infosec fraud I blocked months ago. If you see any Azure related bs from him, just ping me.
  
• 
  
• 
  New #AADInternals version is finally out now: ▪ Moved endpoint related stuff to new module: AADInternals-Endpoints ▪ Added blue team stuff: Get app consent info, find backdoors, convert SID<>Entra ID Object ID, find abusable dynamic groups ▪ Added red team stuff: Get ESTSAUTH
  
• 
  Yet another reason to block #AzureAD directory sync soft match. And while you're doing that, block the takeover through hard match too. You DO NOT need those features for anything!