Tal Maor
@talthemaor
Security Researcher @Microsoft #MicrosoftThreatIntelligence Tweets are my own personal opinion.
ID: 1733637804
https://www.linkedin.com/in/tal-maor-6a1a6472 06-09-2013 01:52:51
207 Tweet
1,1K Followers
427 Following
NTLM relay is dead and living in AAD. An interesting Black Hat talk by Mor Rubin i.blackhat.com/USA-22/Wednesd… CC: Steve Syfuhs 🥝🏳️🌈 Benjamin Delpy #BHUSA2022
Dr. Nestori Syynimaa Matt Zorich Jan Bakker Jos Lieben rootsecdev In M365D there is detection for risky admins which elevate their access. But ideally, every elevate access operation should be monitored and evaluated by the security team