You're reading from PowerShell Automation and Scripting for Cybersecurity Hacking and defense for red and blue teamers

Product type Paperback

Published in Aug 2023

Publisher Packt

ISBN-13 9781800566378

Length 572 pages

Edition 1st Edition

Languages

PowerShell

Tools

PowerShell

Concepts

Cybersecurity

Author (1):

Miriam C. Wiesner

View More author details

Table of Contents (19) Chapters

Preface

1. Part 1: PowerShell Fundamentals

2. Chapter 1: Getting Started with PowerShell FREE CHAPTER

3. Chapter 2: PowerShell Scripting Fundamentals

4. Chapter 3: Exploring PowerShell Remote Management Technologies and PowerShell Remoting

5. Chapter 4: Detection – Auditing and Monitoring

6. Part 2: Digging Deeper – Identities, System Access, and Day-to-Day Security Tasks

7. Chapter 5: PowerShell Is Powerful – System and API Access

8. Chapter 6: Active Directory – Attacks and Mitigation

9. Chapter 7: Hacking the Cloud – Exploiting Azure Active Directory/Entra ID

10. Chapter 8: Red Team Tasks and Cookbook

11. Chapter 9: Blue Team Tasks and Cookbook

12. Part 3: Securing PowerShell – Effective Mitigations In Detail

13. Chapter 10: Language Modes and Just Enough Administration (JEA)

14. Chapter 11: AppLocker, Application Control, and Code Signing

15. Chapter 12: Exploring the Antimalware Scan Interface (AMSI)

16. Chapter 13: What Else? – Further Mitigations and Resources

17. Index

Why subscribe?

18. Other Books You May Enjoy

Hacking the Cloud – Exploiting Azure Active Directory/Entra ID

In the last chapter, we looked at Active Directory (AD) and on-premises authentication. In this chapter, we are looking at its successor and cloud identity provider (IdP): Azure Active Directory (AAD/Azure AD).

As of July 11, 2023, Microsoft renamed Azure AD to Entra ID. As this was just shortly announced before this book was released, we will refer to Entra ID just as Azure Active Directory, Azure AD or AAD in this chapter.

AAD is Microsoft’s cloud-based enterprise identity service. It provides single sign-on (SSO), Conditional Access, and multi-factor authentication (MFA) to protect users against various attack vectors, no matter whether they were initiated on-premises or using cloud-based techniques.

AAD is a multi-tenant cloud directory and authentication service. Other services, such as Office 365 or even Azure, rely on this service for authentication and authorization, by leveraging the accounts...

The rest of the chapter is locked

You're reading from PowerShell Automation and Scripting for Cybersecurity Hacking and defense for red and blue teamers

Table of Contents (19) Chapters

Hacking the Cloud – Exploiting Azure Active Directory/Entra ID

Authors (1)

Personalised recommendations for you

You're reading from PowerShell Automation and Scripting for Cybersecurity Hacking and defense for red and blue teamers

Table of Contents (19) Chapters

Hacking the Cloud – Exploiting Azure Active Directory/Entra ID

Unlock this book and the full library FREE for 7 days

Authors (1)

Personalised recommendations for you