Service principal abuse TL;DR: Add new credential / cert to an over-privileged SP; abuse owner relationship to apps. Stub — to be filled in. What it is TODO Preconditions / where it applies TODO Technique TODO Detection and defence TODO References TODO