Arsenal presentations equip defenders with hands-on tools to simulate, exploit, and understand identity threats in Microsoft Entra ID and SAML-based environments.
HOBOKEN, N.J. — August 4, 2025 — Semperis, a provider of AI-powered identity-security and cyber resilience, today announced two Black Hat Arsenal demonstrations. Chief Identity Architect Eric Woodruff and Security Researcher Tomer Nahum will present a session titled SAMLSmith. Nahum and Security Researcher Jonathan Elkabas will present a talk titled EntraGoat – A Deliberately Vulnerable Entra ID Environment.
SAMLSmith
When: Thursday, August 7 | 2:00pm
Where: Mandalay Bay Convention Center, Business Hall, Arsenal Station 1
Who: Semperis Chief Identity Architect Eric Woodruff and Security Researcher Tomer Nahum
Why: SAMLSmith is the go-to tool for penetrating SAML applications with response forging. While SAML response forging is far from new, enterprises still lack understanding of how SaaS applications integrate or best practices for securing them. With many factors at play, SAML response forging can range from extremely difficult to near impossible for a SOC to detect. The demonstration will explore using SAMLSmith to perform a Golden SAML attack against Active Directory Federation Service and show how the use of SAMLSmith ties into new research around response forging, penetrating certain types of SaaS applications with even more stealth.
EntraGoat – A Deliberately Vulnerable Entra ID Environment
When: Thursday, August 7 | 11:00 am
Where: Mandalay Bay Convention Center, Business Hall, Arsenal Station 8
Who: Semperis Security Researchers Tomer Nahum and Jonathan Elkabas
Why: EntraGoat is a deliberately vulnerable environment designed to simulate real-world security misconfigurations and attack scenarios in Microsoft Entra ID. Security professionals, researchers, and red teamers can leverage EntraGoat to gain hands-on experience identifying and exploiting identity and access management (IAM) vulnerabilities, privilege escalation paths, and other security flaws specific to cloud-based Entra ID environments.
About Semperis
Semperis protects critical enterprise identity services for security teams charged with defending hybrid and multi-cloud environments. Purpose-built for securing hybrid identity environments—including Active Directory, Entra ID, and Okta—Semperis’ AI-powered technology protects over 100 million identities from cyberattacks, data breaches, and operational errors.
As part of its mission to be a force for good, Semperis offers a variety of cyber community resources, including the award-winning Hybrid Identity Protection (HIP) Conference, HIP Podcast, and free identity security tools Purple Knight and Forest Druid. Semperis is a privately owned, international company headquartered in Hoboken, New Jersey, supporting the world’s biggest brands and government agencies, with customers in more than 40 countries.
Learn more: https://www.semperis.com
Follow us: Blog / LinkedIn / X / Facebook / YouTube
Media Contact:
Bill Keeler
Senior Director, PR & Comms
Semperis
billk@semperis.com
