Session Hijacking

The Get-AzContext cmdlet retrieves the current authentication context for Azure Resource Manager requests, while Get-AzContext -ListAvailable cmdlet returns all available contexts. When operating on a target machine, if the user hasn't executed the Disconnect-AzAccount command, the session's context remains active! This allows for the use of the Select-AzContext command to impersonate the session.