Collaborate Disseminate
In our organization we have 2 Active Directory DCs which also uses as DNS servers for all our infrastructure (user PCs, domain and non-domain servers, wi-fi clients, vpn users). I have doubts about the correctness of this approach. For som… Continue reading Separate DNS servers for non-domian hosts and users
SpecterOps has raised an unusually large $75 million Series B funding round to accelerate the growth of its BloodHound Enterprise platform.
The post SpecterOps Scores $75M Series B to Scale BloodHound Enterprise Platform appeared first on SecurityWee… Continue reading SpecterOps Scores $75M Series B to Scale BloodHound Enterprise Platform
I’m trying to understand how a user’s domain credentials are stored in the LSASS (Local Security Authority Subsystem Service) process after performing an interactive logon, such as through RDP (Remote Desktop Protocol).
I read this article… Continue reading How does Windows store interactive logon credentials in memory in a domain environment?
I’ve set up a test domain for a demo that I’m working on, and need to enable enumerating users using netexec/rpcclient, etc. using an anonymous login.
I’ve created a GPO with these settings, set it to enforced, and linked to the Domain Con… Continue reading Enabling Null/Anonymous Enumeration on Server 2022 [migrated]
BloodyAD is an open-source Active Directory privilege escalation framework that uses specialized LDAP calls to interact with domain controllers. It enables various privilege escalation techniques within Active Directory environments. Features “I … Continue reading BloodyAD: Open-source Active Directory privilege escalation framework
I’m member of an association that uses Microsoft Office 365. I’m not an administrator.
Now I’m creating a small web application and this is hosted totally independent of our association (diffent hosting, different domain name).
The intenti… Continue reading Integrate Office365 login but allow only users from one specific organisation [migrated]
The new Kerberos AS-REQ-requested attack is somewhat different from a normal Kerberoast, in that instead of requesting a Service Ticket (for offline cracking) via a normal TGS-REQ, it’s requested via an AS-REQ, which is normally only used … Continue reading Is the AS-REQ Kerberoast attack on AD a violation of Kerberos RFCs?
Since making Kerberos the default Windows authentication protocol in 2000, Microsoft has been working on eventually retiring NTLM, its less secure and obsolete counterpart. Until NTLM gets disabled by default, Microsoft is working on shoring up defense… Continue reading Microsoft enforces defenses preventing NTLM relay attacks
Password policies are a cornerstone of cybersecurity for any organization. A good password policy ensures every end user has a strong and unique password, significantly reducing the risk of unauthorized access and data breaches. These policies not only… Continue reading Product showcase: Securing Active Directory passwords with Specops Password Policy
November 2024 Patch Tuesday is here, and Microsoft has dropped fixes for 89 new security issues in its various products, two of which – CVE-2024-43451 and CVE-2024-49039 – are actively exploited by attackers. The exploited vulnerabilities (… Continue reading Microsoft fixes actively exploited zero-days (CVE-2024-43451, CVE-2024-49039)