Arnau OrtegainFalconForceAutomating the enumeration of missing reply URLs in Azure multitenant appsTL;DR In my previous blog post, I showed the impact that an unregistered reply URL can have in an Azure tenant and how to enumerate them…Jul 23Jul 23
Arnau OrtegainFalconForceArbitrary 1-click Azure tenant takeover via MS applicationIn this blog post I explain how reply URLs in Azure Applications can be used as a vector for phishing.Apr 26Apr 26
