BloodHound 8.0 update adds BloodHound OpenGraph — expanding attack path visibility beyond AD and Entra ID. Learn More
< Back to Blog
Hope Walker

Hope Walker

See the latest by Hope Walker

Image for post titled Going for Broke(ring) – Offensive Walkthrough for Nested App Authentication

Going for Broke(ring) – Offensive Walkthrough for Nested App Authentication

TL;DR: Microsoft uses nested app authentication (NAA) for many applications. Access and refresh tokens for select...

By: Hope Walker
Aug 13, 2025 • 19 min read
Read Post
Image for post titled How Privileged Identity Management Affects Conditional Access Policies

How Privileged Identity Management Affects Conditional Access Policies

Introduction When administrators use directory roles (aka Entra ID roles) when configuring Conditional Access Policies (CAPs),...

By: Hope Walker
Jun 20, 2024 • 11 min read
Read Post
Image for post titled Manual LDAP Querying: Part 2

Manual LDAP Querying: Part 2

This post is a follow-up to my previous post on manual LDAP querying. I would highly...

By: Hope Walker
May 2, 2024 • 20 min read
Read Post
Image for post titled An Introduction to Manual Active Directory Querying with Dsquery and Ldapsearch

An Introduction to Manual Active Directory Querying with Dsquery and Ldapsearch

Introduction Let’s be honest, BloodHound and PowerView are objectively better tools for querying, enumerating, and investigating Active Directory (AD). They...

By: Hope Walker
Jun 2, 2021 • 21 min read
Read Post