Collaborate Disseminate
Say you have this:
An NPS server that grants access to users using client certificates (EAP-TLS).
So say someone managed to snatch the domain administrator’s password. So he logs into the computer using the domain Administ… Continue reading Is there a more secure way for users to log into the domain other than just passwords?
Say you have this:
An NPS server that grants access to users using client certificates (EAP-TLS).
So for example someone managed to snatch the domain administrator’s password and they log in to the computer using the domai… Continue reading Is there a more secure way for users to log into the domain other than just passwords?
Guy came on the show and gave a live demo on how to become Domain Admin in an Active Directory environment, and keep those privileges for 20+ years. Guys shows us how to abuse service accounts to get yourself a golden ticket. Then shows how the Javelin Networks technology can be used to detect, prevent […]
The post Domain Admin in Active Directory, Guy Franco – Paul’s Security Weekly #520 appeared first on Security Weekly.
Continue reading Domain Admin in Active Directory, Guy Franco – Paul’s Security Weekly #520
byt3bl33d3r recently released “DeathStar”, which uses Powershell Empire’s API to automatically obtain Domain Admin privileges in an Active Directory environment with the click of a button. Some may ask, “How do I detect and prevent this attack?” Tune in to this segment to find out how to use products available from Javelin Networks to do Continue reading Detecting The Empire’s Death Star Attack – Paul’s Security Weekly #517
I have some evidence that our Godaddy domain account has been tampered with, by a former administrator with access to the account credentials.
To prove that the account was accessed, I need, at the very least, the timestamps… Continue reading Can I access my own account logs at Godaddy without a subpoena?
We require a method to run a process on a users machine whereby a local user cannot kill this process (from task manager or otherwise). Is there a way to make this application a system process or make it un-killable.
I have … Continue reading Securing a process from local users
I have some problems:
I use VMware Workstation 12 Player, I log on to the PC using domain admin, then I created some local users. With my domain admin, I have installed some applications, however, I try to log on to that PC… Continue reading Three separate questions about VMware Workstation Player [on hold]
This question already has an answer here:
Can my company see what HTTPS sites I went to?
9 answers
What information can my … Continue reading What information can my network admin see when I visit a website? [duplicate]
I need to monitor Active Directory domain administrator activities and look for the following:
Looking for anomalies in daily activity
Getting alerted upon a violation
My problem is that turning on Windows Auditing in my … Continue reading Monitoring Active Directory Domain Administrator Activities