domain controller – WindowsTechs.com

Shadow Credentials attack with TGT and TGS

Posted on November 19, 2023 by Teodor Cristian

I am trying to replicate Shadow Credentials attack in Active Directory environment. My initial approach was to:

Use Whisker to create a new certificate on behalf of DC (successful):
Whisker.exe add /target:dc-2$

Use the newly created ce… Continue reading Shadow Credentials attack with TGT and TGS→

Why do I see LM hashes stored in Active Directory?

Posted on January 31, 2023 by Daniel

I’m using mimikatz to retrieve a user’s password hashes from Active Directory with the following command:
lsadump::dcsync /user:mimikatz
The user’s password is Pa55w.rd.
The output is
…

Credentials:
Hash NTLM: 377565f7d41787414481a283… Continue reading Why do I see LM hashes stored in Active Directory?→

Is my domain controller at risk if allow untrusted devices (partner) access to an app? [closed]

Posted on January 12, 2023 by Architect

I would like to give a partner organisation and their users access to an app.
The users have been provided AD accounts from my organisation.
They will use their company devices (not assured) to access the app over the internet.
The user wi… Continue reading Is my domain controller at risk if allow untrusted devices (partner) access to an app? [closed]→

Microsoft Releases Fix for Kerberos Authentication Issues on Domain Controllers

Posted on November 18, 2022 by Rabia Noureen

Microsoft has started rolling out an out-of-band update to address… Continue reading Microsoft Releases Fix for Kerberos Authentication Issues on Domain Controllers→

How to Add a New Domain Controller to an Existing Domain

Posted on September 12, 2022 by Michael Reinders

As an IT Pro, it is highly likely that you’ve… Continue reading How to Add a New Domain Controller to an Existing Domain→

CISA Advises Federal Agencies to Patch Windows LSA Flaw Affecting Domain Controllers

Posted on July 5, 2022 by Rabia Noureen

Back in May, the Cybersecurity & Infrastructure Security Agency (CISA)… Continue reading CISA Advises Federal Agencies to Patch Windows LSA Flaw Affecting Domain Controllers→

Microsoft Releases Out-Of-Band Patches to Fix Windows AD Authentication Issues

Posted on May 20, 2022 by Rabia Noureen

Microsoft released new out-of-band (OOB) updates yesterday to address Active… Continue reading Microsoft Releases Out-Of-Band Patches to Fix Windows AD Authentication Issues→

Microsoft Confirms May 2022 Patch Tuesday Updates Cause AD Authentication Issues

Posted on May 12, 2022 by Rabia Noureen

Microsoft has acknowledged a new issue that causes authentication failures… Continue reading Microsoft Confirms May 2022 Patch Tuesday Updates Cause AD Authentication Issues→

Microsoft Issues New Guidance on Securing Domain Controllers

Posted on April 15, 2022 by Rabia Noureen

Microsoft has released updated guidance to help enterprise customers protect… Continue reading Microsoft Issues New Guidance on Securing Domain Controllers→

Best Practices for Installing Active Directory Domain Controllers in a Virtual Machine

Posted on April 15, 2022 by Michael Taschler

Installing Active Directory domain controllers in a virtual machine (VM)… Continue reading Best Practices for Installing Active Directory Domain Controllers in a Virtual Machine→