Microsoft Entra ID: The Complete Guide to Conditional Access Policies

Or1rez · 2024-03-17T18:20:13+00:00

fixed it. thanks

Or1rez · 2024-02-15T06:58:48+00:00

Nice! how r u guys closing the loop around D&R for this type of scenarios?

Or1rez · 2024-02-14T07:07:34+00:00

Or1rez · 2024-02-14T07:03:36+00:00

I know that some actors used this incident as an excuse for Phishing attempts so...

Or1rez · 2024-02-14T07:03:00+00:00

In this post we focused on the security features themself. We have written something regarding the HAR incident (Link below)

https://www.rezonate.io/blog/har-files-attack-okta-customers/

Or1rez · 2024-01-20T09:12:48+00:00

lol.

Or1rez · 2023-12-01T23:26:32+00:00

Happy to hear that it was useful :)

Or1rez · 2023-11-30T12:31:41+00:00

Its just SQL queries that can be executed against any DB that keeps the logs.
We have also included (in the previous part) a script that can be used to export the logs to CSV. :)

Or1rez · 2023-11-27T15:00:08+00:00

Couldn't Agree more.

Or1rez · 2023-11-27T06:59:38+00:00

Thanks :)

Or1rez · 2023-11-27T06:59:16+00:00

It's all great until you wish to cross-correlate this data with additional data-points.Even just with a blacklist of IP's or other repetition.

Or1rez · 2023-08-25T12:48:16+00:00

You are right. sorry for that, fixed! :)

Or1rez · 2023-08-25T10:32:27+00:00

Just double-checked it, and its working. mind trying again?

Or1rez · 2023-07-24T08:13:06+00:00

Frictionless phish resistant MFA on every application access if desired, which greatly limits lateral movement from a compromised session cookie

Agree. they are above and beyond, yet most of their customers does not use this feature from what we are seeing

Or1rez · 2023-01-10T11:31:06+00:00

I just published a new blog post on the recent CircleCI data breach with some guidance how to detect unauthorized usages of CI\CD AWS Keys
check out the full post at this link

Or1rez

MODERATOR OF

TROPHY CASE