ad security
How to Defend Against Golden Ticket Attacks: AD Security 101
Golden Ticket attacks are particularly cunning. Like Kerberoasting, Golden Ticket attacks exploit the Kerberos authentication system and are one of the most severe threats to Active Directory environments. Here’s more... The post ...
How to Defend Against MFA Fatigue Attacks: AD Security 101
An MFA fatigue attack—also known as MFA bombing—is an attack tactic, technique, and procedure (TTP) in which a threat actor floods users with multifactor authentication (MFA) requests. By overwhelming, confusing,... The post ...
AD Security 101: Lock Down Risky User Rights
In Active Directory (AD) environments, you can use Group Policy Objects (GPOs) to configure user rights. By using GPOs, you can easily enforce consistent user rights policies across all computers... The post ...
Why AD Modernization Is Critical to Your Cybersecurity Program
Active Directory (AD) is the core identity store for many organizations. As such, AD has also become a major target for bad actors. If attackers gain access to AD, they gain access ...
Why AD Modernization Is Critical to Your Cybersecurity Program
Active Directory (AD) is the core identity store for many organizations. As such, AD has also become a major target for bad actors. If attackers gain access to AD, they... The post ...
AD Security 101: SIEM Tools and AD Monitoring
Before we dive into technical tips that I mentioned in my previous post, I want to raise an important point. If you’re relying solely on security information and event management (SIEM) tools ...
The RastaLabs experience
IntroductionIt was 20 November, and I was just starting to wonder what I would do during the next month. I had already left my previous job, and the new one would only ...