Active Directory - Security Ticks

BloodyAD: Open-source Active Directory privilege escalation framework

Active Directory, Don't miss, GitHub, News, open source, software / SecurityTicks

BloodyAD: Open-source Active Directory privilege escalation framework 2025-01-28 at 07:00 By Mirko Zorz BloodyAD is an open-source Active Directory privilege escalation framework that uses specialized LDAP calls to interact with domain controllers. It enables various privilege escalation techniques within Active Directory environments. Features “I created this tool because I do a lot of internal testing […]

React to this headline:

BloodyAD: Open-source Active Directory privilege escalation framework Read More »

Microsoft enforces defenses preventing NTLM relay attacks

account protection, Active Directory, authentication, Don't miss, Hot stuff, Microsoft, Microsoft Exchange, News, Windows Server / SecurityTicks

Microsoft enforces defenses preventing NTLM relay attacks 2024-12-11 at 15:03 By Zeljka Zorz Since making Kerberos the default Windows authentication protocol in 2000, Microsoft has been working on eventually retiring NTLM, its less secure and obsolete counterpart. Until NTLM gets disabled by default, Microsoft is working on shoring up defenses against NTLM relay attacks. How

React to this headline:

Microsoft enforces defenses preventing NTLM relay attacks Read More »

Product showcase: Securing Active Directory passwords with Specops Password Policy

Active Directory, Don't miss, Hot stuff, News, passwords, policy, Product showcase, Specops Software / SecurityTicks

Product showcase: Securing Active Directory passwords with Specops Password Policy 2024-12-04 at 15:03 By Help Net Security Password policies are a cornerstone of cybersecurity for any organization. A good password policy ensures every end user has a strong and unique password, significantly reducing the risk of unauthorized access and data breaches. These policies not only

React to this headline:

Product showcase: Securing Active Directory passwords with Specops Password Policy Read More »

Microsoft fixes actively exploited zero-days (CVE-2024-43451, CVE-2024-49039)

0-day, Active Directory, CVE, Don't miss, Hot stuff, Immersive Labs, Ivanti, Microsoft, Microsoft Defender, News, OpenSSL, Patch Tuesday, security update, Tenable, Trend Micro, vulnerability, Windows, Windows Server / SecurityTicks

Microsoft fixes actively exploited zero-days (CVE-2024-43451, CVE-2024-49039) 2024-11-12 at 23:03 By Zeljka Zorz November 2024 Patch Tuesday is here, and Microsoft has dropped fixes for 89 new security issues in its various products, two of which – CVE-2024-43451 and CVE-2024-49039 – are actively exploited by attackers. The exploited vulnerabilities (CVE-2024-43451, CVE-2024-49039) CVE-2024-43451 is yet another

React to this headline:

Microsoft fixes actively exploited zero-days (CVE-2024-43451, CVE-2024-49039) Read More »

Five Eyes Agencies Release Guidance on Detecting Active Directory Intrusions

Active Directory, guidance, Identity & Access / SecurityTicks

Five Eyes Agencies Release Guidance on Detecting Active Directory Intrusions 2024-09-27 at 17:31 By Ionut Arghire Five Eyes cybersecurity agencies have released joint guidance on identifying Active Directory compromises. The post Five Eyes Agencies Release Guidance on Detecting Active Directory Intrusions appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Five Eyes Agencies Release Guidance on Detecting Active Directory Intrusions Read More »

Active Directory compromise: Cybersecurity agencies provde guidance

access management, Active Directory, Don't miss, enterprise, guide, Hot stuff, identity management, intrusion detection, News, tips / SecurityTicks

Active Directory compromise: Cybersecurity agencies provde guidance 2024-09-26 at 17:31 By Zeljka Zorz Active Directory (AD), Microsoft’s on-premises directory service for Windows domain networks, is so widely used for enterprise identity and access management that compromising it has become almost a standard step in cyber intrusions. “Active Directory is susceptible to compromise due to its

React to this headline:

Active Directory compromise: Cybersecurity agencies provde guidance Read More »

How AI and zero trust are transforming resilience strategies

access control, Active Directory, Compliance, cyber resilience, cybersecurity, Don't miss, Features, Hot stuff, News, opinion, Quest Software, regulation, Risk Management, strategy, zero trust / SecurityTicks

How AI and zero trust are transforming resilience strategies 2024-09-11 at 07:01 By Mirko Zorz In this Help Net Security interview, John Hernandez, President and General Manager at Quest Software, shares practical advice for enhancing cybersecurity resilience against advanced threats. He underscores the need to focus on on-premises and cloud environments, adapt to new regulations,

React to this headline:

How AI and zero trust are transforming resilience strategies Read More »

Why ransomware attackers target Active Directory

Active Directory, CISO, cybersecurity, Hot stuff, how-to, News, strategy, tips, Video / SecurityTicks

Why ransomware attackers target Active Directory 2024-08-29 at 07:02 By Help Net Security Ransomware attacks have surged 78% year-over-year, affecting various sectors and organizations and significantly impacting supply chains. In this Help, Net Security video, Craig Birch, Technology Evangelist, and Principal Security Engineer at Cayosoft, discusses the rise of ransomware attacks, why attackers often target

React to this headline:

Why ransomware attackers target Active Directory Read More »

Semperis Eyes IPO With $125 Million in Growth Financing

Active Directory, Funding/M&A, identity, Identity & Access, JP Morgan, Semperis / SecurityTicks

Semperis Eyes IPO With $125 Million in Growth Financing 2024-06-20 at 15:31 By Ryan Naraine Enterprise identity company raises new capital from JP Morgan and Hercules Capital as it prepares for an IPO exit. The post Semperis Eyes IPO With $125 Million in Growth Financing appeared first on SecurityWeek. This article is an excerpt from

React to this headline:

Semperis Eyes IPO With $125 Million in Growth Financing Read More »

Cayosoft Raises $22.5 Million for Microsoft AD Recovery Tech

Active Directory, Cayosoft, Compliance, Data Protection, Microsoft / SecurityTicks

Cayosoft Raises $22.5 Million for Microsoft AD Recovery Tech 2024-03-07 at 16:40 By SecurityWeek News Ohio security vendor Cayosoft banks new capital to fuel growth of its flagship Active Directory forest recovery product suite. The post Cayosoft Raises $22.5 Million for Microsoft AD Recovery Tech appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Cayosoft Raises $22.5 Million for Microsoft AD Recovery Tech Read More »

Active Directory outages can cost organizations $100,000 per day

Active Directory, Cayosoft, CISO, cybersecurity, disaster recovery, Don't miss, News, report, survey / SecurityTicks

Active Directory outages can cost organizations $100,000 per day 2024-02-21 at 06:02 By Help Net Security Nearly every organization has core systems services tied to Active Directory that will go down during an outage, according to Cayosoft. Consequences of system downtime for business operations The impact of just one system being down can devastate business

React to this headline:

Active Directory outages can cost organizations $100,000 per day Read More »

SOAPHound: Open-source tool to collect Active Directory data via ADWS

Active Directory, Don't miss, GitHub, Hot stuff, News, open source, software / SecurityTicks

SOAPHound: Open-source tool to collect Active Directory data via ADWS 2024-02-08 at 07:02 By Mirko Zorz SOAPHound is an open-source data collection tool capable of enumerating Active Directory environments through the Active Directory Web Services (ADWS) protocol. How SOAPHound works SOAPHound is a substitute for various open-source security tools typically employed for extracting data from

React to this headline:

SOAPHound: Open-source tool to collect Active Directory data via ADWS Read More »

Adalanche: Open-source Active Directory ACL visualizer, explorer

Active Directory, cybersecurity, GitHub, News, open source, software / SecurityTicks

Adalanche: Open-source Active Directory ACL visualizer, explorer 2024-01-15 at 07:01 By Mirko Zorz Adalanche provides immediate insights into the permissions of users and groups within an Active Directory. It’s an effective open-source tool for visualizing and investigating potential account, machine, or domain takeovers. Additionally, it helps identify and display any misconfigurations. What unique features make

React to this headline:

Adalanche: Open-source Active Directory ACL visualizer, explorer Read More »

GOAD: Vulnerable Active Directory environment for practicing attack techniques

Active Directory, cybersecurity, GitHub, Hot stuff, News, open source, penetration testing / SecurityTicks

GOAD: Vulnerable Active Directory environment for practicing attack techniques 26/10/2023 at 07:01 By Mirko Zorz Game of Active Directory (GOAD) is a free pentesting lab. It provides a vulnerable Active Directory environment for pen testers to practice common attack methods. GOAD-Light: 3 vms, 1 forest, 2 domains “When the Zerologon vulnerability surfaced, it highlighted our

React to this headline:

GOAD: Vulnerable Active Directory environment for practicing attack techniques Read More »

Ransomware dwell time hits new low

Active Directory, attack, cybercrime, cybersecurity, Incident Response, Malware, News, Ransomware, report, Sophos, threats / SecurityTicks

Ransomware dwell time hits new low 25/08/2023 at 06:34 By Help Net Security Median attacker dwell time—the time from when an attack starts to when it’s detected—shrunk from 10 to eight days for all attacks, and to five days for ransomware attacks during the first half of 2023, according to Sophos. In 2022, the median

React to this headline:

Ransomware dwell time hits new low Read More »

Open-source penetration testing tool BloodHound CE released

Active Directory, Azure, cybersecurity, Don't miss, GitHub, Microsoft Azure, Microsoft Entra ID, News, open source, penetration testing, software, SpecterOps / SecurityTicks

Open-source penetration testing tool BloodHound CE released 02/08/2023 at 06:32 By Mirko Zorz SpecterOps released version 5.0 of BloodHound Community Edition (CE), a free and open-source penetration testing solution that maps attack paths in Microsoft Active Directory (AD) and Azure (including Azure AD/Entra ID) environments. It is available for free on GitHub. Identifying simple Attack

React to this headline:

Open-source penetration testing tool BloodHound CE released Read More »