This site contains original research and blogs focused on identity-based threats and attacks, and enhancing detection capabilities.

Research areas include:

• ADCS & PKI Abuse (ESC1-16)
• Hybrid Identity Persistence (AD ↔ Entra ID)
• Token Theft & Replay (OAuth/OIDC/SAML)
• Delegation & Privilege Escalation

The research feeds detection capabilities for Netwrix ITDR products including Threat Manager, Threat Prevention, PingCastle, and more.