Hero image generated by ChatGPT This is a personal blog and all content herein is my own opinion and not that of my employer.

What The Entra Fudge?!

There’s a particular flavour of frustration that only appears when:

• you follow the documentation,
• you apply least privilege,
• you design sensible …

OID-See v1.0.1 is out 🎉

This is a precision release.

No shiny new dashboards.
No dramatic architectural upheaval.
Just tighter logic, fewer false positives, and a scoring model that better reflects how Entra actually behaves in the real world.

If you’re already using OID-See, this release should …

Hero image generated by ChatGPT

This is a personal blog and all content herein is my own opinion and not that of my employer.

What The Entra Fudge?!

There’s a moment every identity or cloud security practitioner eventually hits.

The moment where you do everything right — follow the …

Hero image generated by ChatGPT

This is a personal blog and all content herein is my own opinion and not that of my employer.

Correction

When I initially done this work and posted this blog, my mental model was that lack of ownership was a bad thing. My failing was in seeing ownership as …

Hero image generated by ChatGPT

This is a personal blog and all content herein is my own opinion and not that of my employer.

The Unseen Variable: Identity, Agentic AI and the Path of Least Resistance

Every few years the industry rediscovers a truth that has always been hiding in plain sight. …

This is a personal blog and all content herein is my personal opinion and not that of my employer.

Introduction

I recently had the privilege of attending the OFFENSIVE ENTRA ID AND HYBRID AD SECURITY workshop run by the brilliant Dirk-jan Mollema - author of offensive security tools ROADtools, …