writeups.xyz
/
Joosua Santasalo (@SantasaloJoosua)
Title
Vulnerabilities
Programs
Authors
Azure Monitor – Malicious KQL Query
Privilege Escalation
Cloud
Microsoft
Joosua Santasalo (@SantasaloJoosua)
Gaining Unlimited access to graph AuditLogs endpoint using complex filters with non-privileged user account
Information Disclosure
Privilege Escalation
Microsoft
Joosua Santasalo (@SantasaloJoosua)
MSRC – Joint security research write up – Azure AD Consent bypass disclosure with Kim Jamia – Q1/2022
Broken Authorization
Microsoft
Joosua Santasalo (@SantasaloJoosua)
Kim Jämiä (@KimJamia)
Page 1 of 1