Federated Identity Credential Injection — Proof of Concept
By Rogier Dijkman — — 7 min read
Topics: Azure, Security, Entra ID, Credential Access, Red Team
MITRE ATT&CK: T1528
Proof-of-concept: extract Microsoft Graph tokens from managed identities via federated identity credential injection with Contributor access alone.