Developing a privileged access strategy
A good strategy is critical on your privileged access journey
Sean Metcalf on Twitter
Controlling AD Recon (Bloodhound)https://t.co/BlqJAYCUJ3 https://t.co/yHkgCuiTsp pic.twitter.com/GwZN95kY7J— Sean Metcalf (@PyroTek3) October 17, 2019
Dumping Clear-Text Credentials
Passwords in clear-text that are stored in a Windows host can allow penetration testers to perform lateral movement inside an internal network and eventually fully compromise it. Therefore in a sys…
Microsoft Defender for Identity frequently asked questions
Provides a list of frequently asked questions about Microsoft Defender for Identity and the associated answers
LAPS
Introducing BloodHound
Intro & Background In February of this year, I posted a proof-of-concept script called “PowerPath” which combined Will Schroeder’s PowerView, Justin Warner’s concept of derivative local admin…
DeathStar - Automate getting Domain Admin using Empire
a source for Hacking, Cyber Security, Technology News and Pentest tools for the Technologists and the Pentesters.
Implementing Least-Privilege Administrative Models
Learn more about: Implementing Least-Privilege Administrative Models
The Dog Whisperer’s Handbook
Generally speaking, I'm more of a Cat type of guy, but I have to say I really love BloodHound. And if you do too, you are in for a treat... Last week, the ERNW Insight Active Directory Security Summit took place in Heidelberg. (More Info) For this occasion, @Enno_Insinuator asked me if I would like to deliver a BloodHound Workshop, and of course I accepted the challenge... We had a full ...
LSASS Memory Dumps Are Stealthier Than Ever Before
LSASS memory dump files aid attackers to swiftly extract credentials. Read an in-depth analysis of LSASS dumps as an attack vector & dumping methods.