Brandon ColleyJul 1, 20227 minPush Comes To Shove: exploring the attack surface of SCCM Client Push AccountsEditors Note: Part 2 of this series is now published! Head over after you've finished reading Part 1. Introduction Did you know that...
Sean MetcalfJun 24, 20222 minWebcast: Top 10 Ways to Improve Active Directory Security QuicklyThis Trimarc Webcast provides information about current AD attack methods attackers are leveraging to compromise Active Directory and 10 thi
Scott BlakeJan 22, 20216 minLDAP Channel Binding and SigningThe initial fuss around Microsoft “forcing” customers into LDAP channel binding and LDAP signing (January 2020, March 2020, second half...
Sean MetcalfDec 10, 202014 minKerberos Bronze Bit Attack (CVE-2020-17049) Scenarios to Potentially Compromise Active DirectoryIntroduction & Attack Overview Jake Karnes (@jakekarnes42) with NetSPI published 3 articles (that’s right 3!) describing a new attack...
Sean MetcalfSep 3, 20206 minEscalating to Domain Admin in Microsoft’s Cloud Hosted Active Directory (Azure AD Domain Services)the attacker could compromise the Azure AD Domain Services domain and persist at the Domain Controller and/or domain level