These days, working with a cloud platform is already commonplace. Companies choose Microsoft Azure for a number of benefits, including security. But there are some responsibilities on the customer side and that's may become weakest link in the chain.

A demo-based session shows attacks on the weakest link in 3 scenarios: Hybrid Identity, Legacy VM-based application and Modern Application.

The session includes:
- Pentesting Microsoft Entra ID Connect
- Finding cached credentials
- Getting control over Compute
- Extracting secrets from Key Vault
- Getting Access to App Service and Azure SQL Database
- Exploring Azure Web App Firewall