OID-See is a security analysis tool for Microsoft Entra ID (Azure Active Directory) that maps OAuth application consent, permissions, service principal assignments, and trust signals into a queryable graph — giving defenders a BloodHound-style view of OAuth sprawl and impersonation risk. What it …

Hero image generated by ChatGPT This is a personal blog and all content herein is my own opinion and not that of my employer. Correction When I initially done this work and posted this blog, my mental model was that lack of ownership was a bad thing. My failing was in seeing ownership as metadata …

Cover Photo by ChatGPT Introduction In this post, I’m going to talk about a recent experience having a vulnerability in this website reported to me, the whole experience and how I dealt with it. What Happened? On 29th January 2025 @ 12:07, I received an email into my admin mailbox for my …

Images in this post generated by Microsoft Copilot This is a personal blog and all content therein is my personal opinion and not that of my employer. Introduction In this post, I’m going to talk about an issue I spotted recently in Power Platform and by extension Copilot Studio. The Issue I …

Cover Photo by Kafka Anokhina on Unsplash This is a personal blog and all content therein is my personal opinion and not that of my employer. Introduction In this post, I’m going to talk about an issue I spotted recently, to make you aware of an overly privileged built-in role in Microsoft …

Cover Photo generated with AI - 19th November 2023 at 17:59 UTC by DALL-E 3 via Bing Chat Introduction In this post, I’m going to talk about a problem I recently experienced with permissions in GitHub, how I worked around them and what you need to know about OAuth permissions in GitHub. What …