Konstantin Evdokimov

Researcher, pentester, redteam specialist; Head of MIS‑Team, "M 13"

About the speaker

Konstantin has more than 18 years of experience in information security. He has been engaged in extensive security research of various information systems. In the course of his career, Konstantin has acquired both defensive and offensive expertise.
August 26
Track 1
The lecture is about authentication and authorization in Microsoft Office 365. You will learn how the office applications such as Outlook, OneDrive, Teams, Word, Excel, and the Windows operating system as such are authorized on cloud servers. Specifically, where and how they store their access tokens, what DPAPI (Data Protection API), PRT (Primary Refresh Token), TPM (Trusted Platform Module) have to do with this, and how all of this magic can be used in red team operations.