welcome on ninjasta.it

entra-id

Lateral Movement in Azure AD: What Still Works in 2025

Jul 3, 2025

Identity (Active Directory and Entra ID)

azure-ad, conditional-access, entra-id, identity-security, lateral-movement, mitre-attack, token-theft

Despite improvements in Microsoft cloud security, lateral movement in hybrid Azure AD environments is still viable in 2025 — and often undetected.
Account Manipulation: How Attackers Stay Inside Your Systems

Mar 30, 2025

Security Techniques

account-manipulation, audit-logging, entra-id, identity-security, mitre-attack, persistence

Account manipulation is one of the stealthiest and most effective techniques used by threat actors to maintain or escalate access in compromised environments. Once inside, attackers often attempt to secure their foothold. They do this by modifying existing accounts. Another strategy is creating new ones that blend into your environment. This can include: The goal?…
Migrating Your Windows Device from Active Directory to ENTRA ID

Feb 24, 2025

Identity (Active Directory and Entra ID)

active-directory, device-migration, entra-id, hybrid-identity, Powershell, windows

In a world where mobility is crucial, maintaining an AD joined computer can change from an asset to a burden. Modern users are constantly on the move. They do not rely on applications that need a constant remote connection. These users often manage a device tethered to an on-premise infrastructure. Instead of simplifying their daily…
Steps to Migrate to New Authentication Techniques

Sep 30, 2024

Identity (Active Directory and Entra ID)

authentication-methods, conditional-access, entra-id, identity-security, mfa, migration, sspr

Prepare the migration Beginning September 30, 2025, authentication techniques can’t be managed in these legacy multi-factor authentication and self-service password reset policies. Before start the migration of the new authentication techniques you need to review the action configuration of: Review the legacy MFA policy Start by documenting which techniques are available in the legacy MFA…
Windows LAPS: Transition from Legacy to Modern Password Management

Feb 20, 2023

Security Techniques

active-directory, entra-id, intune, laps, local-admin, password-management, windows-security

The legacy Microsoft LAPS product is deprecated as of Windows 11 23 H2 and later. The installation of the legacy Microsoft LAPS MSI package is blocked on newer versions of the operating system. Microsoft will no longer consider code changes for the legacy Microsoft LAPS product. Microsoft recommends using Windows LAPS to manage local administrator…

entra-id

Lateral Movement in Azure AD: What Still Works in 2025

Account Manipulation: How Attackers Stay Inside Your Systems

Migrating Your Windows Device from Active Directory to ENTRA ID

Steps to Migrate to New Authentication Techniques

Windows LAPS: Transition from Legacy to Modern Password Management