nico – WindowsTechs.com

How does local pass-the-hash (mimikatz’s sekurlsa::pth) work?

Posted on June 23, 2021 by nico

Mimikatz’s sekurlsa::pth documentation states:

mimikatz can perform the well-known operation ‘Pass-The-Hash’ to run a
process under another credentials with NTLM hash of the user’s
password, instead of its real password.
For this, it star… Continue reading How does local pass-the-hash (mimikatz’s sekurlsa::pth) work?→

Will this SFTP setup successfully keep users from accessing other areas of the filesystem?

Posted on November 12, 2019 by nico

If the access is secured; users are chrooted in their home directory, and other security basics, how difficult is it for users to access other data on the server?

Dedicated server
Linux CentOS
ftp server software : Pureftpd… Continue reading Will this SFTP setup successfully keep users from accessing other areas of the filesystem?→

Do I need additional encryption on top of HTTPS for a REST API?

Posted on January 24, 2018 by nico

Let’s set up the environment before coming to my question.

We have an web application which will be accessible by browsers/clients over HTTPS.
Monstly only accessible in the intranet ( rarely over the internet )
Frontend using Angular
Ba… Continue reading Do I need additional encryption on top of HTTPS for a REST API?→

Keep encrypted files in sync on a cloud service, without having to upload an entire encrypted volume each time

Posted on February 9, 2017 by nico

Situation:

User has several folders worth of GBs which they want to keep in
sync on a cloud service (for example Mega or Dropbox) in an encrypted form;
User does not want to sync a single encrypted volume, because this
would mean, obviou… Continue reading Keep encrypted files in sync on a cloud service, without having to upload an entire encrypted volume each time→