IAM the Captain Now – Hijacking Azure Identity Access

This blog post demonstrates how misconfigured Azure IAM permissions (`roleAssignments/write`, `roleDefinitions/write`, and `federatedIdentityCredentials/write`) can be abused to escalate privileges and retrieve Key Vault secrets; it provides a lab setup, concrete Azure CLI examples, and three attack workflows: direct role assignment to grant owner-like access, creating or modifying custom roles to expand privileges, and adding OIDC federated credentials to a managed identity to authenticate via GitHub workflows and access secrets.