BloodHound 8.0 update adds BloodHound OpenGraph — expanding attack path visibility beyond AD and Entra ID. Learn More

  • Contact Us
  • Support
  • Blog
Book a Demo
  • Platform
    • BloodHound Enterprise

      Advance from mapping to eliminating attack paths with the enterprise platform that delivers at scale

      Privilege Zones
      Identity Attack Path Management
      BloodHound Feature Comparisons
      Integrations
      Interactive Demo

      BloodHound Community Edition

      Start mapping attack paths with the open-source tool that started it all

      GitHub
      Documentation
      Join the Community on Slack
      Cover of the State of APM report

      State of Attack Path Management

      SpecterOps's inaugural report, highlighting the biggest growing problem facing the security community: Identity Security.

      Learn more
  • Services & Tradecraft
    • OFFENSIVE SERVICES

      Red Team
      Purple Team
      AI Red Team
      Penetration Testing
      Maturity Assessments
      Attack Path Assessment

      TRAINING & TRADECRAFT

      Adversary Tactics

      Red Team Operations
      Identity-Driven Offensive Tradecraft
      Detection
      Tradecraft Analysis

      Adversary Perspectives

      Active Directory
      Azure

      JOIN US

      SpecterBash 2025

      Trainings, evening sessions, and more with a Halloween twist to ring in the spooky time of year.

      More Info
  • Solutions
    • SOLUTIONS

      Privileged Access Governance & Compliance
      Eliminate Lateral Movement
      Manage Identity Risk
      Secure Scaling
      Mergers & Acquisitions

      INDUSTRIES

      Public Sector
      Healthcare
      Financial Services

      PARTNERS & INTEGRATIONS

      Partners
      Integrations

      RESOURCES

      Attack Path Management Maturity Model

      Evaluate your ability to stop identity-based attacks

      Read the Whitepaper
  • Community
    • Our Commitment to 
Open Source

      Committed to advancing the community through open source contributions, cutting-edge research, and knowledge sharing

      OPEN SOURCE TOOLS

      BloodHound Community Edition
      Mythic
      Ghostwriter
      See All Tools

      Join the Conversation

      Learn from others and share your story on the BloodHoundGang Slack Community

      More Info

      OPEN SOURCE RESEARCH

      Ghostwriter illustration

      Collaborative Editing

      Ghostwriter now supports real-time collaborative editing for observation...

      More Info
  • Company
    • ABOUT US

      Our Mission
      The SpecterOps Difference
      Customers
      Team
      News

      GET IN TOUCH

      Join Us
      Contact Us

      COME HANGOUT WITH US

      Black Hat image

      Join us a Black Hat USA 2025, booth 4527.
      - 6 talks
      - 4 trainings
      - 1 can't miss party

      More Info
  • Resources
    • RESEARCH

      Case Studies
      White Papers
      Tools
      Datasheets
      View All

      BLOG

      Research & Tradecraft
      BloodHound
      Industry Insights
      Company Updates
      View All

      EVENTS

      SpecterOps Events
      Webinars
      Meetups
      Talks

      BLOG

      Specter Ops logo on a blue background

      Fueling the Fight Against Identity Attacks

      When we founded SpecterOps, one of our core principles was to build a...

      Read article

      RESOURCES

      The Renaissance of NTLM Relay Attacks

      NTLM relay attacks have been around for a long time. While many security...

      Read the Whitepaper
  • Book a Demo
  • Contact Us
    Support
    Blog
  • Book a Demo
< Back to Blog
Julian Catrambone

Julian Catrambone

See the latest by Julian Catrambone

Image for post titled OneLogin, Many Issues: How I Pivoted from a Trial Tenant to Compromising Customer Signing Keys

OneLogin, Many Issues: How I Pivoted from a Trial Tenant to Compromising Customer Signing Keys

TL;DR OneLogin was found to have security vulnerabilities in its AD Connector service that exposed authentication...

By: Julian Catrambone
Jun 10, 2025 • 11 min read
Read Post

Never miss an update

  • Sign Up For Updates From SpecterOps

  • This field is for validation purposes and should be left unchanged.

Platform

BloodHound Enterprise

Privilege Zones
BloodHound Feature Comparison
Integrations
Interactive Demo

BloodHound Community Edition

GitHub
Documentation
Join the Community on Slack

Services and Tradecraft

OFFENSIVE SERVICES

Red Team
Purple Team
AI Red Team
Penetration Testing
Maturity Assessments
Attack Path Assessment

TRAINING & TRADECRAFT

Adversary Tactics

Red Team Operations
Identity-Driven Offensive Tradecraft
Detection
Tradecraft Analysis

Adversary Perspectives

Active Directory
Azure

Solutions

SOLUTIONS

Privileged Access Governance and Compliance
Eliminate Lateral Movement
Manage Identity Risk
Secure Scaling
Mergers & Acquisitions

INDUSTRIES

Public Sector
Healthcare
Financial Services

PARTNERS & INTEGRATIONS

Partners
Integrations

Resources

RESEARCH

Case Studies
White Papers
Tools
Datasheets
View All

BLOG

Research & Tradecraft
BloodHound
Industry Insights
Company Updates

EVENTS

SpecterOps Events
Webinars
Meetups
Talks

Platform

BloodHound Enterprise

Privilege Zones
BloodHound Feature Comparison
Integrations
Interactive Demo

BloodHound Community Edition

GitHub
Documentation
Join the Community on Slack

Follow Us

Company

ABOUT US

Our Mission
The SpecterOps Difference
Customer
Team
News

GET IN TOUCH

Join Us
Contact Us

Community

OPEN SOURCE TOOLS

BloodHound Community Edition
Mythic
Ghostwriter
See All Tools

Follow Us

Copyright 2025 Specter Ops, Inc. All Rights Reserved.

Terms of Service
|
Privacy Policy
|
Trust Center