Dr Nestori Syynimaa's Avatar

Dr Nestori Syynimaa

@drazuread.com

Principal Identity Security Researcher @Microsoft. Ex-Secureworks (PhD, MSc, MEng, CITP, CCSK). And yes, opinions are my own ;)

2,251
Followers 346
Following 77
Posts 07.06.2023
Joined
Posts Following

Latest posts by Dr Nestori Syynimaa @drazuread.com

Recording available here: youtu.be/6MoV7SEEkJg

24.02.2026 09:07 πŸ‘ 3 πŸ” 1 πŸ’¬ 0 πŸ“Œ 0
Post image

Getting ready for #ELDK2026! I've got some #AADInternals stickers, just come and say hi to get one. The first one will also get a rare challenge πŸͺ™!

23.02.2026 13:15 πŸ‘ 0 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
Post image

Folks, there's an interesting security community call next week on Mon Feb 23rd at 8am PST (I'll be speaking too): "Identity Control Plane Under Attack: Consent Abuse and Hybrid Sync Risks"

Register now πŸ‘‰ aka.ms/securitycomm...

19.02.2026 10:43 πŸ‘ 4 πŸ” 1 πŸ’¬ 0 πŸ“Œ 1
Preview
Disobey Disobey - The Nordic Security Event

Hey peeps, anyone attending Disobey.fi next month?

11.01.2026 13:20 πŸ‘ 1 πŸ” 0 πŸ’¬ 0 πŸ“Œ 1
Post image

Taking my new @msrc.microsoft.com shirt out for a spin!

12.12.2025 09:36 πŸ‘ 7 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
Post image

Catching up with @tiraniddo.dev and @fromsteph2u.bsky.social #MSRCBlackHat researcher celebration party!

11.12.2025 10:32 πŸ‘ 4 πŸ” 0 πŸ’¬ 1 πŸ“Œ 0

Hashtag correction: #BlackHatEurope πŸ˜†

10.12.2025 14:27 πŸ‘ 4 πŸ” 0 πŸ’¬ 1 πŸ“Œ 0
Post image

If you see this guy in #BΓΆavkHayEurope, come say hi to get your #AADInternals sticker or the official "The non-US tour 2025" shirt!

10.12.2025 14:23 πŸ‘ 0 πŸ” 0 πŸ’¬ 0 πŸ“Œ 1
Post image

Heading to Buenos Aires, wish me luck 😬

20.10.2025 13:23 πŸ‘ 4 πŸ” 0 πŸ’¬ 1 πŸ“Œ 0
Post image

Perfect luggage weight for the #EkoParty!

20.10.2025 09:02 πŸ‘ 7 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
Post image

There's some room for sure!

13.10.2025 12:11 πŸ‘ 0 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
Preview
OrangeCon Community Driven Cybersecurity Conference Experience the Hackers Community in The Netherlands! OrangeCon is a community driven, non-profit Cybersecurity Conference in the heart of The Netherlands. Mee...

youtube.com/@orangecon?s...

21.09.2025 19:14 πŸ‘ 1 πŸ” 0 πŸ’¬ 1 πŸ“Œ 0

One of the best sessions I've seen for years! A deep-dive to Entra architecture, high availability, etc. 🀯
Must see for all Entra enthusiasts!

03.09.2025 11:27 πŸ‘ 9 πŸ” 1 πŸ’¬ 0 πŸ“Œ 0
Post image

You know you want to speak at Disobey 2026. And now is your chance to do that!

Our CfP is open at: cfp.disobey.fi/disobey-2026/

Check the guidelines from the link and send your proposal by Sep 30th!

05.08.2025 14:52 πŸ‘ 11 πŸ” 7 πŸ’¬ 0 πŸ“Œ 0
Post image

Checking pre-vacation research notes..

01.08.2025 11:17 πŸ‘ 3 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0

Congratulations to all who renewed their Microsoft MVP status for the next year πŸŽ‰πŸ”₯

11.07.2025 06:11 πŸ‘ 7 πŸ” 1 πŸ’¬ 0 πŸ“Œ 0

Updated to include RomHack:
www.identitysummit.cloud
orangecon.nl
www.mcttp.de
www.brucon.org
romhack.io
www.blackhat.com/sector/2025/

04.07.2025 12:21 πŸ‘ 1 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
Post image

My Central Europe / Canada tour looks like this, looking forward to seeing excellent presentations and having inspiring discussions πŸ”₯ See you in September!
www.identitysummit.cloud
orangecon.nl
www.mcttp.de
www.brucon.org
www.blackhat.com/sector/2025/

04.07.2025 06:53 πŸ‘ 2 πŸ” 0 πŸ’¬ 1 πŸ“Œ 1
Post image

Slides from my @wearetroopers.bsky.social talk are available at aadinternals.com/talks

27.06.2025 11:29 πŸ‘ 7 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
Post image

nOAuth revisited by @ericonidentity.com at @wearetroopers.bsky.social

25.06.2025 14:06 πŸ‘ 3 πŸ” 2 πŸ’¬ 0 πŸ“Œ 0
Post image

And so it begins.. First @wearetroopers.bsky.social conference day! I've got some rare #AADInternals challenge coins with me and this one goes to first one who asks for it

25.06.2025 07:02 πŸ‘ 5 πŸ” 1 πŸ’¬ 0 πŸ“Œ 0
Post image

βœ…οΈ slide deck
βœ…οΈ demos
βœ…οΈ stickers
βœ…οΈ challenge coins
βœ…οΈ running shoes

All ready for the TROOPERS 2025
@wearetroopers.bsky.social

23.06.2025 10:56 πŸ‘ 7 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
Post image

New video: Had a cool run through with @lukasberancz into the kind of gaps DART identify commonly in incident response, then a deeper dive on hardware based credential providers like macOS Platform SSO.

WATCH: youtu.be/qZV3IeWsRd0

20.06.2025 18:20 πŸ‘ 7 πŸ” 1 πŸ’¬ 0 πŸ“Œ 1
Post image

Feeling confused..

12.06.2025 07:32 πŸ‘ 5 πŸ” 0 πŸ’¬ 2 πŸ“Œ 0
Post image Post image Post image Post image

Checked out the first gig of @durandurancom.bsky.social summer tour with wifey at Nokia Arena @tampere.fi 😎

03.06.2025 19:43 πŸ‘ 1 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
Post image

The compulsory studies of my doctoral programme at University of JyvΓ€skylΓ€ are now completed! Next step: dissertation πŸ“˜

20.05.2025 06:13 πŸ‘ 16 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0

After some testing, there is a clear bug to be fixed, but also something else I still need to figure out.

16.05.2025 13:11 πŸ‘ 1 πŸ” 0 πŸ’¬ 1 πŸ“Œ 0
Post image Post image

Walking down the memory lane in Oxford πŸ‡¬πŸ‡§ with wifey. Ten years ago this day we became husband and wife ❀️

13.05.2025 07:39 πŸ‘ 7 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
Post image Post image Post image Post image

Ran this route in Oxford last time 10 years ago.

11.05.2025 17:29 πŸ‘ 4 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0

It seems that it can get the password for the MSA account, but starting the service as MSA fails. Need to do some debugging.

11.05.2025 11:26 πŸ‘ 0 πŸ” 0 πŸ’¬ 1 πŸ“Œ 0