Collaborate Disseminate
I’m setting up a lab environment for unconstrained delegation in Active Directory. I’ve encountered some issues and would appreciate guidance on the correct configuration. Here’s my current setup:
Lab Environment:
Domain Controller (DC01)… Continue reading How to setup a lab for Kerberos Unconstrained Delegation in Active Directory? [migrated]
I’m setting up a lab environment for unconstrained delegation in Active Directory. I’ve encountered some issues and would appreciate guidance on the correct configuration. Here’s my current setup:
Lab Environment:
Domain Controller (DC01)… Continue reading How to setup a lab for Kerberos Unconstrained Delegation in Active Directory? [migrated]
I am in a corporate environment with on-premises AD on the company.com domain.
We have an AWS VPC hosting some .Net APIs in IIS – the domain these are in is companycloud.com. These APIs are all on the same box.
Some of these .Net APIs make… Continue reading Why is presence of SPN on an account causing Kerberos "failed to decrypt" error (KRB_AP_ERR_MODIFIED)
I am pentesting a site with all permissions. I have been able to upload a PHP shell embedded within a png image. I have also been able to change the extension of the file like
something.php. So my question is when I run this file in my xam… Continue reading PHP embedded within PNG is not executing rather randering in IIS but executes in Apache
I have an IIS server hosting a website. We have an SSL certificate for the primary WAN connection which is working. When we lose the primary internet connection, users need to securely connect using the backup connection. Is it possible… Continue reading Mutliple WAN connections, same server, ssl certificates [migrated]
We noticed FTP service going down intermittently in the server and we found an FTP user was used to DDoS the server. Then we deleted the specific user from the server. After that the user "anonymous" was hitting the server with 1… Continue reading How to handle Microsoft FTP server being DDoSed
We noticed FTP service going down intermittently in the server and we found an FTP user was used to DDoS the server. Then we deleted the specific user from the server. After that the user "anonymous" was hitting the server with 1… Continue reading How to handle Microsoft FTP server being DDoSed
I recently stumbled across customer machines (windows server) that were part of the customers active directory domain and also had IIS applications accessible for the www.
I only have the vague feeling that this is a bad idea. I am thinkin… Continue reading domain (active directory) machines accessible via web
I have a IIS website and I need to enable basic authentication on it. With nginx/apache, the authentication database is unrelated to local system, i.e can only be used to do basic auth, can’t log in locally.
I only have one machine so I ha… Continue reading IIS basic authentication uses local users, how should I prevent potential security issues?
I’m reading https://drive.google.com/file/d/1aeNq_5wVwHRR1np1jIRQM1hocrgcZ6Qu/view?pli=1
On page 44 it mentions about a way to exploit IIS servers,
I tried to reproduce it but it didn’t work.
I created a Windows 2016 IIS server and add a… Continue reading Understanding the attack on IIS virtual hosting