Olivia
Online
John Jiang
@SecurityThunder
Researcher/UCCU Hacker Co-founder/HackerPeanutJohn
Taiwan
Joined October 2017
216 Following
86 Followers
20 Posts
Here's my top 20 weaknesses in M365 based on experience consulting. I've seen most of these everywhere in varying mixtures. Public groups has been a problem in all but one org I've worked with.
1. Public Groups expose sensitive data
2. Upload from unmanaged devices
3. Download from unmanaged devices
4. Lack of CAPs to block device code phishing
5. Lack of CAPs and configurations to mitigate AITM
6. OneDrive sync allowed from unmanaged devices
7. Ability to sync cloud storage to other 3rd party drives and vice versa
8. Anyone links in OneDrive and SharePoint
9. Legacy SharePoint IRM on sites and document libraries and Teams (classic) sites
10. Non-existant App Governance
11. Lack of governance or data security on Power Platform Connectors
12. Lack of license by request for Power Platform Apps
13. Teams apps sprawl
14. Anon users allowed to chat in Teams
15. Excessive API permissions in vendor apps
16. Ungoverned 3rd party AI
17. Lack of DLP on Microsoft Cloud Services
18. Lack of Safelinks in office365 apps aside from email
19. Lack of safe attachments in m365 apps outside email
20. Lack of phishing resistant authn
@TEMP43487580 Let's become masters of memes together! 😂
I just started a new blog, and this is my first post. I took a bit of PTO, so this is a little record of some fun I had playing around with Intune during that time. It's about enrollment restriction bypass😄
https://t.co/o9CcXHN4b8
Who to follow
Blackstorm Security
@blackstormsecbr
Cyber security company focused on vulnerability research and exploit development.
TwinkleStar03
@_twinklestar03
Breaking weird machines!
Research Intern @ DEVCORE
#Hardstyle
Olivia Msm Grace
@ImNotMen
Security等の仕事。 icon似てますが日本国籍です。 from Tokyo Linux/Windows/Python/Rust/AWS/GCP etc 婚活中(タイプ:ソフトマッチョ)
#TROOPERS25 AD & Entra ID Security track resources, on the @ERNW_ITSec blog @Insinuator
Featuring @Jonas_B_K @martinhaller_IT @TEMP43487580 @JsQForKnowledge @fabian_bader @_dirkjan @ShitSecure @DrAzureAD @kazma_tw @subat0mik @unsigned_sh0rt @ericonidentity
https://t.co/dmbl9iZSPj
Just wrapped up our talk at DEF CON 33 !
Wandering around after my talk, and people are still coming up to recommend listening to our research!
It's the greatest affirmation for a researcher.
#DEFCON
Our talks in DEF CON!
Saturday at 11:30 in LVCC - L1 - Exhibit Hall West 3 - Track 4
First international talk — at @WEareTROOPERS !
Saw views from my history textbook, and met legends I used to only see on the internet.🫡
Big thanks to my best research partner, my mentor @SecurityThunder , and everyone who showed up to hype me up 🔥
Today at #Troopers24 we released Certiception – the ADCS honeypot we always wanted to have.
Blog: https://t.co/2NCzLTtItc
Source code: https://t.co/WLSMq2Bl8m
Slide deck, including our guide to deception strategy: https://t.co/xEAUPhqaGR
I am honored that our submission was accepted for TROOPERS.
Looking forward to Heidelberg next month!
We just published an almost complete list of talks that have been accepted for #TROOPERS24. Thanks to all of you who participated in the CFP! So many excellent submissions. We really had a hard time to decide which will fit best for this year!
https://t.co/QBb2cx6hdq
I'll be presenting at #HITB2023HKT, discussing how we leverage LLM as active directory security assistant.
#HITB2023HKT GPTHound – Your Active Directory Security Assistant - John Jiang - https://t.co/MWJFVDlLSe
See you at Blue Team Summit!
👏@SANSDefense #BlueTeamSummit 2022 is almost here! Learn how to accurately diagnose #PrivilegeEscalation through your #ActiveDirectory with CyCraft cybersecurity researchers John Jiang and Gary Sun.
🚨Join us LIVE Online for free: https://t.co/V8EWOCPdNX
We observed an attacker #VPN directly into an internal network to bypass preventive security & then create a digital skeleton key to gain admin access across the entire network. Is your #remotework force secure?
Read our full analysis >> https://t.co/mPMguPom4A
[Blog] Lateral Movement Using Outlook’s CreateObject Method and DotNetToJScript https://t.co/ueiOM8Wd0h
This is exactly why recovery from APT is difficult: they have multiple vantage points to get inside your network once they're in, lateral mouvement is deadly https://t.co/7v51fgSFkP by @FrodeHommedal
@maridegrazia Thx , I'll let you know when the translation is published.
@maridegrazia It's awesome. May I translate the post to Traditional Chinese? I want share it with more people.
Most Popular Users
Elon Musk 
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.9M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.8M followers
Taylor Swift
@taylorswift13
80.6M followers
Lady Gaga
@ladygaga
72.2M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.5M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.1M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
59.9M followers