Azure AD Guest Account Security Risks - Beyond Enumeration

Discover how Azure AD guest accounts can be exploited to gain unauthorized access to sensitive enterprise resources in this eye-opening BSidesLV conference talk. Explore undocumented APIs that allow guests to bypass limitations and access corporate SQL servers, SharePoint sites, and KeyVault secrets. Learn about the potential for lateral movement within organizations through the creation and control of internal business applications. Witness live demonstrations of these capabilities using default Office 365 and Azure AD configurations. Get introduced to PowerGuest, a powerful tool designed to uncover the true scope of guest access in your tenant, automate limitation bypass, and enumerate accessible data. Gain valuable insights into hardening Azure AD and Office 365 configurations to prevent such attacks and implement detection logic for enhanced security. This 47-minute presentation by Michael Bargury challenges the assumption that guest accounts pose little security risk and provides essential knowledge for securing your Azure environment.

BG - All You Need is Guest: Beyond Enumeration