{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,1]],"date-time":"2026-02-01T02:20:43Z","timestamp":1769912443786,"version":"3.49.0"},"publisher-location":"New York, NY, USA","reference-count":32,"publisher":"ACM","license":[{"start":{"date-parts":[[2023,10,16]],"date-time":"2023-10-16T00:00:00Z","timestamp":1697414400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2023,10,16]]},"DOI":"10.1145\/3607199.3607228","type":"proceedings-article","created":{"date-parts":[[2023,10,3]],"date-time":"2023-10-03T22:30:51Z","timestamp":1696372251000},"page":"426-439","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":1,"title":["CoZure: Context Free Grammar Co-Pilot Tool for Finding New Lateral Movements in Azure Active Directory"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-7237-1642","authenticated-orcid":false,"given":"Abdullahi","family":"Chowdhury","sequence":"first","affiliation":[{"name":"School of Computer and Mathematical Sciences, The University of Adelaide, Australia"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-1028-920X","authenticated-orcid":false,"given":"Hung","family":"Nguyen","sequence":"additional","affiliation":[{"name":"School of Computer and Mathematical Sciences, The University of Adelaide, Australia"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2023,10,16]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"Aleph. 2018. DOS vulnerability in Azure Active Directory Graph API. https:\/\/alephsecurity.com\/vulns\/aleph-2018003"},{"key":"e_1_3_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.ic.2021.104791"},{"key":"e_1_3_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1093\/comjnl\/45.6.620"},{"key":"e_1_3_2_1_4_1","doi-asserted-by":"publisher","DOI":"10.1109\/NCG.2018.8593188"},{"key":"e_1_3_2_1_5_1","unstructured":"Microsoft\u00a0Research Blog. 2020. RESTler finds security and reliability bugs through automated fuzzing. Microsoft. https:\/\/www.microsoft.com\/en-us\/research\/blog\/restler-finds-security-and-reliability-bugs-through-automated-fuzzing\/(Last accessed on: 30\/06\/2023)."},{"key":"e_1_3_2_1_6_1","volume-title":"Brute-force and dictionary attack on hashed real-world passwords. In 2018 41st international convention on information and communication technology, electronics and microelectronics (mipro)","author":"Bo\u0161njak L","unstructured":"L Bo\u0161njak, J Sre\u0161, and Bosnjak Brumen. 2018. Brute-force and dictionary attack on hashed real-world passwords. In 2018 41st international convention on information and communication technology, electronics and microelectronics (mipro). IEEE, Opatija, Croatia, 1161\u20131166."},{"key":"e_1_3_2_1_7_1","volume-title":"Proc. of 1st Workshop on Tabulation in Parsing and Deduction (TAPD\u201998)","author":"Chappelier J-C","year":"1998","unstructured":"J-C Chappelier and Martin Rajman. 1998. A generalized CYK algorithm for parsing stochastic CFG. In Proc. of 1st Workshop on Tabulation in Parsing and Deduction (TAPD\u201998). INRIA, France, 133\u2013137."},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICCSE.2016.7581709"},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-01950-1_41"},{"key":"e_1_3_2_1_10_1","unstructured":"XM Cyber. 2021. Privilege Escalation and Lateral Movement on Azure \u2013 Part 1. XM Cyber. https:\/\/www.xmcyber.com\/privilege-escalation-and-lateral-movement-on-azure-part-1\/(Last accessed on: 30\/06\/2023)."},{"key":"e_1_3_2_1_11_1","unstructured":"Ryan Hausknecht. 2021. Attacking Azure & Azure AD Part II. Specter Ops. https:\/\/posts.specterops.io\/attacking-azure-azure-ad-part-ii-5f336f36697d(Last accessed on: 30\/06\/2023)."},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1145\/107005.107055"},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1145\/568438.568455"},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1145\/1629575.1629605"},{"key":"e_1_3_2_1_15_1","unstructured":"Stuart Kwan. 2021. Introducing Azure AD custom security attributes. Tech Community Microsoft. https:\/\/techcommunity.microsoft.com\/t5\/azure-active-directory-identity\/introducing-azure-ad-custom-security-attributes\/ba-p\/2147068(Last accessed on: 30\/06\/2023)."},{"key":"e_1_3_2_1_16_1","unstructured":"m365guy. 2021. Lateral Movement With Managed Identities Of Azure Virtual Machines. m365internals. https:\/\/m365internals.com\/2021\/11\/30\/lateral-movement-with-managed-identities-of-azure-virtual-machines\/(Last accessed on: 30\/06\/2023)."},{"key":"e_1_3_2_1_17_1","unstructured":"Sean Metcalf. 2021. Active Directory Security. Ad Security. https:\/\/adsecurity.org\/?p=4277(Last accessed on: 30\/06\/2023)."},{"key":"e_1_3_2_1_18_1","volume-title":"MS15-096: Vulnerability in Active Directory service could allow denial of service","year":"2015","unstructured":"Microsoft. 2015. MS15-096: Vulnerability in Active Directory service could allow denial of service: September 8, 2015. https:\/\/bit.ly\/3e9WDq7"},{"key":"e_1_3_2_1_19_1","unstructured":"Microsoft. 2020. Project OneFuzz. Microsoft. https:\/\/www.microsoft.com\/en-us\/research\/project\/project-onefuzz\/(Last accessed on: 30\/06\/2023)."},{"key":"e_1_3_2_1_20_1","unstructured":"Microsoft. 2022. What are managed identities for Azure resources? Microsoft. https:\/\/docs.microsoft.com\/en-us\/azure\/active-directory\/managed-identities-azure-resources\/overview(Last accessed on: 30\/06\/2023)."},{"key":"e_1_3_2_1_21_1","unstructured":"OWASP. 2022. OWASP Top Ten. OASP. https:\/\/owasp.org\/www-project-top-ten\/(Last accessed on: 30\/06\/2023)."},{"key":"e_1_3_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1007\/s10710-020-09389-y"},{"key":"e_1_3_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE-C.2017.4"},{"key":"e_1_3_2_1_24_1","unstructured":"Andy Robbins Rohan Vazarkar and Will Schroeder. 2020. AzureHound. https:\/\/bloodhound.readthedocs.io\/en\/latest\/data-collection\/azurehound.html"},{"key":"e_1_3_2_1_25_1","unstructured":"Andy Robbins Rohan Vazarkar and Will Schroeder. 2022. BARK. BloodHound. https:\/\/github.com\/BloodHoundAD\/BARK"},{"key":"e_1_3_2_1_26_1","unstructured":"Andy Robbins Rohan Vazarkar and Will Schroeder. 2022. BloodHound. BloodHound. https:\/\/github.com\/BloodHoundAD\/BloodHound"},{"key":"e_1_3_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1016\/0304-3975(91)90374-B"},{"key":"e_1_3_2_1_28_1","unstructured":"AX Sharma. 2021. New Azure Active Directory password brute-forcing flaw has no fix. ARS Technica. https:\/\/arstechnica.com\/information-technology\/2021\/09\/new-azure-active-directory-password-brute-forcing-flaw-has-no-fix\/(Last accessed on: 30\/06\/2023)."},{"key":"e_1_3_2_1_29_1","unstructured":"Marius Solbakken. 2021. Quick look at managing Azure AD Custom Security Attributes using Graph. Marius Solbakken Blog. https:\/\/goodworkaround.com\/2021\/12\/01\/managing-azure-ad-custom-security-attributes-using-graph\/#more-59126(Last accessed on: 30\/06\/2023)."},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1016\/S1353-4858(12)70025-9"},{"key":"e_1_3_2_1_31_1","unstructured":"Shannon Williams. 2021. Businesses under threat as attackers target Active Directory. https:\/\/itbrief.com.au\/story\/businesses-under-threat-as-attackers-target-active-directory. Accessed: 30\/06\/2023."},{"key":"e_1_3_2_1_32_1","volume-title":"2019 International Symposium on Theoretical Aspects of Software Engineering (TASE). IEEE","author":"Zhiwu XU","year":"2019","unstructured":"XU Zhiwu, Kerong Ren, and Fu Song. 2019. Android malware family classification and characterization using CFG and DFG. In 2019 International Symposium on Theoretical Aspects of Software Engineering (TASE). IEEE, Guilin, China, 49\u201356."}],"event":{"name":"RAID 2023: The 26th International Symposium on Research in Attacks, Intrusions and Defenses","location":"Hong Kong China","acronym":"RAID 2023"},"container-title":["Proceedings of the 26th International Symposium on Research in Attacks, Intrusions and Defenses"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3607199.3607228","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3607199.3607228","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T16:37:35Z","timestamp":1750178255000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3607199.3607228"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,10,16]]},"references-count":32,"alternative-id":["10.1145\/3607199.3607228","10.1145\/3607199"],"URL":"https:\/\/doi.org\/10.1145\/3607199.3607228","relation":{},"subject":[],"published":{"date-parts":[[2023,10,16]]},"assertion":[{"value":"2023-10-16","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}