These scripts were used to launch tests and observe results for studying the roles allowing to abuse Entra ID federation for persistence and privilege escalation.

Results are available in the blogpost: Roles allowing to abuse Entra ID federation for persistence and privilege escalation

You can use these scripts if you want to reproduce the results. Start by renaming "config.ps1.example" and filling it as described in it.

Then you can use each script depending on the scenario you want to reproduce.

Clément Notin for Tenable Research

This work is provided as-is. Tenable forbids using it outside of security research, in particular, customers must NOT use these to configure their Entra ID

Licensed under the GNU GPLv3