Limiting Domain Controller Attack Surface: Why less services, less software, less agents = less exposure.
top of page
Search
This article is a guide to making the best-informed decisions by companies asking the right questions.
Jake Hildreth
Aug 281 min
Tutorial - Throwing Windows Through an Apple. - Virtualizing Windows Server 2025 on Apple Silicon
This is where some people will try to dazzle and impress you with pontification and prose. I’m not those people.
186
Darryl Baker
Jul 167 min
Securing The Chink in Kerberos’ Armor, FAST! Understanding The Need For Kerberos Armoring
35 years after the first public version of Kerberos, attacks on it are still coming fast and furious. Time to armor up.
2,729
Sean Metcalf
Jul 14 min
Active Directory Security Risk #101: Kerberos Unconstrained Delegation (or How Compromise of a Single Server Can Compromise the Domain)
Editor's Note: Nearly a decade ago, Sean Metcalf made this post on ADSecurity.org and we're reposting it here in its original form because,
1,407
Sean Metcalf
Jun 51 min
BSides Dublin - The Current State of Microsoft Identity Security: Common Security Issues and Misconfigurations
We have an Identity problem and not the kind you think of when you look in the mirror. Attacks have shifted from the perimeter to the...
621
Brandon Colley
Jun 57 min
Demystifying Privileged Identity Management - Part 1
This article series attempts to dissect the terms we throw around when talking about PIM.
1,109
Sean Metcalf
May 201 min
The Current State of Microsoft Identity Security: Common Security Issues and Misconfigurations - BSides Dublin 2024
"We have an Identity problem and not the kind you think of when you look in the mirror. Attacks have shifted from the perimeter to the...
203
Danny Akacki
Apr 232 min
BSides Charm - 2024
Trimarc CTO Sean Metcalf and Active Directory Security Assessment Lead Jake Hildreth presented at the 2024 BSides Charm. Their slides are...
754
Jake Hildreth
Mar 113 min
Nesting Is For The Birds: The Problem with Nested Groups
Discussing a common High Priority issue: excessive membership in AD Admin groups due to Nested Groups.
1,067
Danny Akacki
Jan 317 min
Trimarc January Newsletter
Happy New Year, Trimarc Subscribers! We realize the time normal people say that was about 2.5 weeks ago but, in our defense, it’s cold in...
139
Brandon Colley
Nov 16, 202314 min
Once Upon a Console: vCenter Console Coercion
The best way to combat creative attackers is to become more creative ourselves.
204
bottom of page