Featured image of post Troopers 2026
Conference Talk

Troopers 2026

I’m super excited to be speaking at Troopers 2026, June 24th - 26th.

Popping Microsoft’s Sandbox

What Falls Out of a Dataverse Container

Microsoft Dataverse runs customer code inside process-isolated containers that are supposed to keep tenants safely separated. In this talk I’ll share research from BeyondTrust’s Phantom Labs where we deployed a custom .NET plugin into the sandbox and walked out with system credentials, cryptographic keys, proprietary DLLs, and customer data.

By decompiling ~14,000 C# source files we reverse-engineered the internal gRPC protocol, documented 27 unauthenticated methods across three services, and explored what cross-tenant code execution actually looks like in practice.

Details

What we’ll cover:

  • Standard Dataverse plugin deployment mechanics
  • Escalation to SYSTEM privileges via a single command
  • Extraction of LSASS dumps, registry hives, and process memory (400+ MB total)
  • Recovery of production TLS private keys and 52 customer organization identifiers
  • gRPC protocol analysis and custom tooling development
  • Cross-tenant execution scenarios and their limitations
  • Sandbox defense mechanisms that succeeded versus those that failed
  • Disclosure timeline and Microsoft’s response
© 2026 Simon Maxwell-Stewart
Built with Hugo
Theme Stack designed by Jimmy