Hybrid Identity Protection
Categories
- Active Directory Backup & Recovery (67)
- Active Directory Security (235)
- AD Security 101 (17)
- Community Tools (25)
- Directory Modernization (9)
- From the Front Lines (70)
- Hybrid Identity Protection (80)
- Identity Attack Catalog (32)
- Identity Threat Detection & Response (166)
- Our Mission: Be a Force for Good (14)
- Purple Knight (6)
- Semperis University (5)
- The CISO's Perspective (18)
- Threat Research (78)
- Uncategorized (3)
Hardening Entra ID Recovery and Identity Security Resilience
- Tim Springston
- Feb 24, 2026
Most identity recovery strategies primarily focus on users and groups. But in Entra ID, that’s only part of the story. After an attack, if access signals are missing or misaligned, you may technically have your users back, but you still can’t safely run the business. Take a look at how…
Semperis Acquires MightyID: Expands True Cyber Resilience Across Multi-IdP Environments
- Alex Weinert | Chief Product Officer
- Feb 04, 2026
An identity an outage anywhere can become a business crisis everywhere. And effective defense means resilience—not just prevention—so operations can continue, even under attack. Learn how Semperis’ acquisition of MightyID expands our comprehensive identity resilience across your entire identity fabric.
25 Years of AD Breaches: Three Moves to Transform Incident Response
- Semperis
- Jan 23, 2026
Active Directory is attackers’ favorite path to domain dominance. Learn how mapping your defenses to the NIST Cybersecurity Framework can improve cyber incident response and recovery.
Best Cybersecurity Conferences for Identity Security Professionals in 2026
- Semperis
- Dec 30, 2025
For anyone safeguarding hybrid identity systems, continuous learning and cyber community engagement are critical. Here are our top picks for conferences that deliver a laser-focus on identity security—and the technical knowledge you need to stay ahead of threats.
EntraGoat Scenario 3: Exploiting Group Ownership in Entra ID
- Jonathan Elkabas and Tomer Nahum
- Nov 06, 2025
Dive into EntraGoat Scenario 3, where you’ll discover how individually legitimate Entra ID features, when combined with misconfigured group ownership, can cascade into a privilege escalation chain that elevates a low-level account into a tenant-wide threat.
Unlocking Unmatched Identity Resilience: The Semperis-Cohesity Partnership
- Chris Salzgeber | Former Product Manager, Integrations
- Sep 17, 2025
The Semperis-Cohesity partnership is the convergence of two industry leaders, each with singular expertise. With Cohesity Identity Resilience, organizations can be confident that their critical identity systems are secure and recoverable.
EntraGoat Scenario 6: Exploiting Certificate-Based Authentication to Impersonate Global Admin in Entra ID
- Jonathan Elkabas and Tomer Nahum
Editor’s note This scenario is part of a series of examples demonstrating the use of EntraGoat, our Entra ID simulation environment. You can read an overview of EntraGoat and its value here. Certificate Bypass Authority–Root Access Granted EntraGoat Scenario 6 details a privilege escalation technique in Microsoft Entra ID where…
EntraGoat Scenario 2: Exploiting App-Only Graph Permissions in Entra ID
- Jonathan Elkabas and Tomer Nahum
In our second EntraGoat attack scenario, follow the steps from a carelessly leaked certificate to capture the Global Admin password—and full Entra ID compromise.
