List Applications in Tenant

Description

list applications in tenant module attempts to assign a azure ad role to a specified target account. This can be used to elevate privileges by granting roles to an account under control in the tenant.

Trigger

MAAD Attack Arsenal -> "Application" -> 1

MITRE ATT&CK Information

Tactic	Technique
Persistence	Account Manipulation: Additional Cloud Roles

Additional Details

Microsoft services being accessed by this module:

Entra ID (Azure AD)

External PowerShell module used:

AzureAd