Welcome to our Microsoft Entra Attack Defense session, where you’ll learn how to counter some of the most well-known identity-based attacks on the web.

We’ll start with an overview of the attacks we’ll simulate in our lab, followed by a deep dive into the defense mechanisms provided by Microsoft Entra ID to mitigate each one.

Throughout this session, we’ll analyze how attackers structure their attacks, moving through the different phases: reconnaissance, initial access, enumeration, privilege escalation, and lateral movement.

Attacks We’ll Cover:

✅ AiTM (Adversary-in-the-Middle) Attacks – Stealing MFA claims
✅ Device Code Phishing – Exploiting login codes for unauthorized access
✅ Pivoting from Azure to On-Prem – Targeting domain controllers
✅ Abusing Microsoft Entra Connect Synchronization

For each attack, we’ll demonstrate how to defend against it using our Zero Trust 2026 model. including an AI-powered security approach—to further strengthen your Microsoft Entra ID environment.

Get ready for a hands-on, immersive workshop that blends offensive and defensive strategies, giving you the tools to better understand and secure your Microsoft identity infrastructure!