Accenture
Scott Miller is a Penetration Tester at Accenture and performs vulnerability assessments and penetration tests for Accenture’s clients, with his favorite domains being infrastructure and web. He enjoys traveling and attending conferences and recruiting events related to security and/or diversity and inclusion. Scott is a musician and singer and also enjoys fitness and doing activities like kayaking, hiking, and boxing.
Be sure to catch Scott’s talk at ShowMeCon!
________________________________________________________________________________________________________________
Discover the Unseen: Azure Vulnerability Exploitation
In the ever-expanding realm of cloud computing, understanding the vulnerabilities of widely used services is crucial for effective penetration testing. This talk will focus on finding and exploiting vulnerabilities in Microsoft Azure and Azure Active Directory (AD), now called Entra ID.
We will start by understanding the architecture of Azure and Azure AD, providing a foundation for
understanding where security issues come into play. From there, we will delve into common vulnerabilities and misconfigurations and discuss how to identify and exploit them.
The core of this talk will be a series of real-world demonstrations of these vulnerabilities being exploited.
These hands-on examples will provide attendees with a clear understanding of the potential risks and the
power of Azure.
This talk is intended for penetration testers, security professionals, and anyone interested in the darker
side of cloud security. No knowledge of Azure or AD is required to attend this talk. Join me as we unmask
the cloud and dive into the world of Azure penetration testing.