Cody Burkard (@codyburkard.com) Bsky

This was a fun one to dig into.

Ever wonder how Azure Easy Auth really works, and how to break it?

Turns out it's pretty easy, and it may be abusable for priv esc and lateral movement:

dazesecurity.io/blog/abusing...

10 months ago 0 0 0 0

Looking forward to posting this one. I'm guessing it's another "by design", In which case all you Azure Security folks should stay tuned

1 year ago 1 0 0 0

Corrected link: codyburkard.com/blog/abusing... 😊

1 year ago 2 0 0 0

Are you an Azure Pentester looking for new lateral movement techniques?

Take a look at my blog post about abusing Data Factory to steal secrets and tokens.

Thanks @karimscloud.bsky.social for the inspiration to look into this.

codyburkard.com/abusingselfh...

1 year ago 9 3 1 0

Rainy Days Security Blog

Hello BlueSky World :)

I am an Azure Security researcher living in Norway. I research attack techniques against Entra, Azure, and applications built in Azure.

You can find my blog at codyburkard.com

1 year ago 3 0 0 0

Posts by Cody Burkard