August 2016 – Active Directory Security

August 2016 archive

Aug 15 2016

Microsoft LAPS Security & Active Directory LAPS Configuration Recon

By Sean Metcalf in Microsoft Security, Technical Reference

Over the years, there have been several methods attempted for managing local Administrator accounts: Scripted password change – Don’t do this. The password is exposed in SYSVOL. Group Policy Preferences. The credentials are exposed in SYSVOL. Password vault/safe product (Thycotic, CyberArk, Lieberman, Quest, Exceedium, etc). Microsoft Local Administrator Password Solution (LAPS). LAPS Overview Microsoft’s …

Aug 13 2016

PowerShell Security: PowerShell Attack Tools, Mitigation, & Detection

By Sean Metcalf in Microsoft Security, PowerShell, Technical Reference

This post is a follow-up of sorts from my earlier posts on PowerShell, my PowerShell presentation at BSides Baltimore, and my presentation at DEF CON 24. Hopefully this post provides current information on PowerShell usage for both Blue and Red teams. Related posts: BSides Charm Presentation Posted: PowerShell Security: Defending the Enterprise from the Latest …

Aug 04 2016

DEF CON 24 (2016) Talk “Beyond the MCSE: Red Teaming Active Directory” Presentation Slides Posted

By Sean Metcalf in ActiveDirectorySecurity, Microsoft Security, Security Conference Presentation/Video

On Thursday, August 4th, I presented “Beyond the MCSE: Red Teaming Active Directory” at DEF CON 24 (2016). Here are the slides for this talk: DEFCON24-2016-Metcalf-BeyondTheMCSE-RedTeamingActiveDirectory Here’s my talk description from the DEF CON website: Active Directory (AD) is leveraged by 95% of the Fortune 1000 companies for its directory, authentication, and management capabilities, so …

2016, Active Directory Security, DEFCON24, MCSE, Presentation Slides, Red Teaming Active Directory

Aug 03 2016

Presentation Slides Posted for Black Hat USA 2016 Talk “Beyond the MCSE: Active Directory for the Security Professional”

By Sean Metcalf in Microsoft Security, Security Conference Presentation/Video

On Wednesday, August 3rd, I presented “Beyond the MCSE: Active Directory for the Security Professional” at Black Hat USA 2016. Here are the slides for this talk: US-16-Metcalf-BeyondTheMCSE-ActiveDirectoryForTheSecurityProfessional Here’s my talk description from the Black Hat website: Active Directory (AD) is leveraged by 95% of the Fortune 1000 companies for its directory, authentication, and management …

Active Directory for the Security Professional, Black Hat USA 2016, MCSE, Presentation Slides

August 2016 archive

Microsoft LAPS Security & Active Directory LAPS Configuration Recon

PowerShell Security: PowerShell Attack Tools, Mitigation, & Detection

DEF CON 24 (2016) Talk “Beyond the MCSE: Red Teaming Active Directory” Presentation Slides Posted

Presentation Slides Posted for Black Hat USA 2016 Talk “Beyond the MCSE: Active Directory for the Security Professional”

Recent Posts

Trimarc Active Directory Security Services

Popular Posts

Categories

Recent Posts

Recent Comments

Archives

Categories

Meta

Copyright

August 2016 archive

Microsoft LAPS Security & Active Directory LAPS Configuration Recon

PowerShell Security: PowerShell Attack Tools, Mitigation, & Detection

DEF CON 24 (2016) Talk “Beyond the MCSE: Red Teaming Active Directory” Presentation Slides Posted

Presentation Slides Posted for Black Hat USA 2016 Talk “Beyond the MCSE: Active Directory for the Security Professional”

Recent Posts

Trimarc Active Directory Security Services

Popular Posts

Categories

Tags

Recent Posts

Recent Comments

Archives

Categories

Meta

Copyright