Office 365 blog

Everything about Office 365 administration

  • AAD & M365 KILL CHAIN
  • AAD INTERNALS
  • LINKS
  • POWERSHELL
  • TOOLS

Onedrive

Bypassing OneDrive sync domain restrictions

Bypassing OneDrive sync domain restrictions

December 11, 2019 (Last Modified: January 19, 2020)

OneDrive has a security option to allow syncing only from PCs joined to specific domains. In this blog, using the latest AADInternals toolkit (announced at Black Hat Europe 2019), I’ll show how the domain restrictions can be easily bypassed.

Recent Posts

  • Deep-dive to Azure AD device join
  • BPRT unleashed: Joining multiple devices to Azure AD and Intune
  • Abusing Teams client protocol to bypass Teams security policies
  • AADInternals Cloud Identity Summit 2020 edition
  • Introducing a new phishing technique for compromising Office 365 accounts

Categories

  • Article
  • Blog

Social

Twitter
LinkedIn
nestori.syynimaa@gerenios.com

Tags

aadconnect (1) aadinternals (9) active-directory (1) adfs (3) admin (3) authentication (1) azure (16) azure-active-directory (22) azuread (3) blackhat (1) bprt (2) browser (1) compromise (1) desktop-sso (1) device (1) dns (3) email (2) encryption (1) exchange (1) federation (2) forensics (1) gdpr (1) global-administrator (1) graph (1) groups (1) guest (2) hybrid-join (1) identity (2) inactive (1) insider (1) intune (1) join (1) logs (1) mailbox (1) mdm (1) mfa (6) office-365 (9) office365 (9) on-prem (1) onedrive (1) outsider (2) partner (1) password (1) persistence (1) phishing (2) planner (1) powershell (13) prt (4) pta (1) recon (2) reconnaissance (4) seamless-sso (1) security (29) sso (2) sync (1) synchronisation (1) t2 (1) teams (3) user (1) virtual-machine (1)

© 2021 Gerenios Ltd.