Conference Talk on Simon Maxwell-Stewart

Troopers 2026

Thu, 28 May 2026 11:00:00 -0800

I’m super excited to be speaking at Troopers 2026, June 24th - 26th.

Popping Microsoft’s Sandbox

What Falls Out of a Dataverse Container

Microsoft Dataverse runs customer code inside process-isolated containers that are supposed to keep tenants safely separated. In this talk I’ll share research from BeyondTrust’s Phantom Labs where we deployed a custom .NET plugin into the sandbox and walked out with system credentials, cryptographic keys, proprietary DLLs, and customer data.

By decompiling ~14,000 C# source files we reverse-engineered the internal gRPC protocol, documented 27 unauthenticated methods across three services, and explored what cross-tenant code execution actually looks like in practice.

Details

What we’ll cover:

Standard Dataverse plugin deployment mechanics
Escalation to SYSTEM privileges via a single command
Extraction of LSASS dumps, registry hives, and process memory (400+ MB total)
Recovery of production TLS private keys and 52 customer organization identifiers
gRPC protocol analysis and custom tooling development
Cross-tenant execution scenarios and their limitations
Sandbox defense mechanisms that succeeded versus those that failed
Disclosure timeline and Microsoft’s response

DECON 33 @ Cloud Village

Sat, 05 Jul 2025 00:07:55 -0800

Speaking @ DEFCON 33!

I’m so so excited to be speaking at DEFCON 33. The venue will be at the cloud village, on my favourite topic restless guests. We’ll cover the known subscription ownership hack and then new end to end attacks! See just how far a restless guest could get in your azure environment, and how to defend against it properly. 2025 August 9th 14:35 - 15:15, see schedule.

Abstract

Through novel research our team uncovered a critical vulnerability in Azure’s guest user model, revealing that guest users can create and own subscriptions in external tenants they’ve joined—even without explicit privileges. This capability, which is often overlooked by Azure administrators, allows attackers to exploit these subscriptions to expand their access, move laterally within resource tenants, and create stealthy backdoor identities in the Entra directory. Alarmingly, Microsoft has confirmed real-world attacks using this method, highlighting a significant gap in many Azure threat models. This talk will share the findings from this first of its kind research into this exploit found in the wild.

We’ll dive into how subscriptions, intended to act as security boundaries, make it possible for any guest to create and control a subscription undermines this premise. We’ll provide examples of attackers leveraging this pathway to exploit known attack vectors to escalate privileges and establish persistent access, a threat most Azure admins do not anticipate when inviting guest users. While Microsoft plans to introduce preventative options in the future, this gap leaves organizations exposed to risks they may not even realize exist––but should definitely know about!

BSides Dublin 2025

Wed, 26 Feb 2025 11:07:55 -0800

I’m super excited to be speaking at BSides Dublin 2025.

Restless Guests

From Subscription to Backdoor Intruder

OWASP Global Appsec EU 2025

Wed, 26 Feb 2025 11:07:55 -0800

I’m super excited to be speaking at OWASP Global Appsec Eu 2025.

Restless Guests

From Subscription to Backdoor Intruder

BSides Seattle 2025

Wed, 26 Feb 2025 11:07:33 -0800

I’m super excited to be speaking at BSides Seattle 2025.

Restless Guests

From Subscription to Backdoor Intruder

Discover a critical vulnerability in Azure’s guest user model that enables attackers to create and control subscriptions in external tenants—without explicit privileges. This overlooked capability lets adversaries expand access, move laterally, and plant stealthy backdoors in Entra directories. With confirmed real-world attacks exploiting this gap, our first-of-its-kind research reveals how attackers leverage these pathways, why this undermines Azure’s security assumptions, and what organizations must do to protect themselves before Microsoft’s fixes arrive.

Details

Through novel research our team uncovered a critical vulnerability in Azure’s guest user model, revealing that guest users can create and own subscriptions in external tenants they’ve joined—even without explicit privileges. This capability, which is often overlooked by Azure administrators, allows attackers to exploit these subscriptions to expand their access, move laterally within resource tenants, and create stealthy backdoor identities in the Entra directory. Alarmingly, Microsoft has confirmed real-world attacks using this method, highlighting a significant gap in many Azure threat models. This talk will share the findings from this first of its kind research into this exploit found in the wild.

We’ll dive into how subscriptions, intended to act as security boundaries, make it possible for any guest to create and control a subscription undermines this premise. We’ll provide examples of attackers leveraging this pathway to exploit known attack vectors to escalate privileges and establish persistent access, a threat most Azure admins do not anticipate when inviting guest users. While Microsoft plans to introduce preventative options in the future, this gap leaves organizations exposed to risks they may not even realize exist––but should definitely know about!

BSides SLC 2025

Wed, 26 Feb 2025 11:06:57 -0800

I’m super excited to be speaking at BSides SLC 2025.

Date: Friday, 11 Apr 2025 Time: 1:30 pm - 2:20 pm (50 minutes)

Experience Level: Intermediate-Advanced

Restless Guests

From Subscription to Backdoor Intruder

Details

Outline: Introduction to the Vulnerability

Overview of Azure’s guest user model.
The discovery: guest users can create and own subscriptions in external tenants without explicit privileges.
Implications of the Vulnerability

Why subscriptions are assumed to act as security boundaries.

How this capability undermines that security premise.
Attack Techniques and Real-World Exploits

Examples of how attackers escalate privileges using these guest-controlled subscriptions.

Real-world cases confirmed by Microsoft showcasing the severity of this exploit.
Impact on Organizations

Risks of lateral movement and persistent access.

Common oversights in Azure threat models related to guest users.
Microsoft’s Response and Future Preventative Options

Planned fixes and their anticipated timeline.

Current gaps that leave organizations exposed.
Actionable Takeaways for Defenders

Immediate steps Azure admins can take to mitigate the risk.

Long-term strategies to strengthen tenant security against such exploits.