LAPS Access + Pass the Cert + Writeable folder

Methodology and Resources/Cloud - Azure Pentest.md

@@ -3,6 +3,7 @@
 ## Summary
 
 * [Azure Recon Tools](#azure-recon-tools)
+* [Terminology](#terminology)
 * [Enumeration](#enumeration)
     * [Enumerate valid emails](#enumerate-valid-emails)
     * [Enumerate Azure Subdomains](#enumerate-azure-subdomains)
@@ -179,7 +180,17 @@
     # Administrator
     $ Create-Backdoor, Execute-Backdoor
     ```
+
+## Terminology
+
+> Basic Azure AD terminologies
+
+* **Tenant**: An instance of Azure AD and represents a single organization.
+* **Azure AD Directory**: Each tenant has a dedicated Directory. This is used to perform identity and access management functions for resources.
+* **Subscriptions**: It is used to pay for services. There can be multiple subscriptions in a Directory.
+* **Core Domain**: The initial domain name <tenant>.onmicrosoft.com is the core domain. It is possible to define custom domain names too.
     
+
 ## Enumeration
 
 ### Enumerate valid emails
@@ -1115,4 +1126,5 @@ Using [https://autologon.microsoftazuread-sso.com/](https://autologon.microsofta
 * [Moving laterally between Azure AD joined machines - Tal Maor - Mar 17, 2020](https://medium.com/@talthemaor/moving-laterally-between-azure-ad-joined-machines-ed1f8871da56)
 * [AZURE AD INTRODUCTION FOR RED TEAMERS - Written by Aymeric Palhière (bak) - 2020-04-20](https://www.synacktiv.com/posts/pentest/azure-ad-introduction-for-red-teamers.html)
 * [Impersonating Office 365 Users With Mimikatz - January 15, 2017 - Michael Grafnetter](https://www.dsinternals.com/en/impersonating-office-365-users-mimikatz/)
-* [The Art of the Device Code Phish - Bobby Cooke](https://0xboku.com/2021/07/12/ArtOfDeviceCodePhish.html)
+* [The Art of the Device Code Phish - Bobby Cooke](https://0xboku.com/2021/07/12/ArtOfDeviceCodePhish.html)
+* [AZURE AD cheatsheet - BlackWasp](https://hideandsec.sh/books/cheatsheets-82c/page/azure-ad)