Skip to content
Security research blog by friends, focused on practical insights
linkedin.com/in/yehuda-smirnov/
X
GitHub
linkedin.com/in/yehuda-smirnov/
X
GitHub
linkedin.com/in/yehuda-smirnov/
X
GitHub
linkedin.com/in/yehuda-smirnov/
GitHub
info@fndsec.net
About us
Blog's Github
Yehuda Smirnov
Evading EntraID Conditional Access Policies via Cross-Tenant ROPC
New Process Injection Class: The CONTEXT-Only Attack Surface
Breaking Down SharePoint Walls: Hunting for Sensitive Files
ShadowHound: A SharpHound Alternative Using Native PowerShell
Peeking Behind the Curtain: Finding Defender’s Exclusions
WMI Research and Lateral Movement
Hook, Line and Sinker: Phishing Windows Hello for Business
Not the Access You Asked For: How Azure Storage Account Read/Write Permissions Can Be Abused for Privilege Escalation and Lateral Movement
Understanding The TFS Vulnerability Cortex EDR
Lateral Movement via Internet Explorer DCOM & ActiveX: Leveraging StdRegProv
Subscribe
Subscribed
Security Friends' Research Blog
Sign me up
Already have a WordPress.com account?
Log in now.
Security Friends' Research Blog
Subscribe
Subscribed
Sign up
Log in
Report this content
View site in Reader
Manage subscriptions
Collapse this bar
Security Friends' Research Blog 