Kerberoasting is a post-exploitation attack technique targeting the Kerberos authentication protocol in Active Directory. In a Kerberoasting attack, an adversary uses a valid (even low-privilege) domain user account to request service tickets for service accounts – accounts that have a Service Principal Name (SPN) registered. These service tickets (TGS tickets) are encrypted with the service […]
In April 2025, British retail giant Marks & Spencer (M&S) was hit by a devastating ransomware attack that disrupted operations, paused online orders, and caused widespread financial damage. Nearly £700 million was wiped from its market valuation, and customers experienced delays, store issues, and service outages. The group behind this attack? A sophisticated hacking gang […]
Office 365 Security Best Practices Guide. In 2025, Office 365 (now Microsoft 365) continues to be the dominant productivity platform used by organizations around the world. With this popularity comes increasing threats from cyberattacks, phishing campaigns, and unauthorized access. As an IT admin, your responsibility is to ensure your tenant is configured securely to reduce […]
How to Perform an Active Directory Security Assessment. Active Directory is the backbone of identity and access management in most enterprise environments, making its security paramount. This guide empowers us to conduct a comprehensive security assessment of our AD environment, identifying vulnerabilities and ensuring robust protection. These meticulously crafted steps safeguard our infrastructure and fortify […]
Free Active Directory Compliance tool for CIS benchmarks, SOX, NIST, GDPR and HIPAA. I’ve created a Powershell script that outputs a HTML report on the status of your Active Directory in regards to your compliance. Run on as many domains as you need. You can run it remotely, just specify the domain controller and the […]
Emerging Cybersecurity Threats in Active Directory: Security & Mitigation. Compromising Active Directory gives attackers broad access to organization’s systems and sensitive data. Additionally, its deep integration into the IT environment means that weaknesses in Active Directory configurations expose the entire network to risks of lateral movement and privilege escalation, allowing attackers to gain administrative privileges […]
Role of MFA in Strengthening Active Directory Security. Organizations rely heavily on Active Directory to manage network resources in today’s digital landscape. However, the traditional reliance on passwords for authentication poses significant security risks. Multi-factor authentication (MFA) is essential to strengthen Active Directory security. Also Read Ensuring Active Directory Security in Hybrid Environments Role of MFA […]
Preventing Access: Active Directory Authentication Protocols. Active Directory Authentication Protocols play a pivotal role in safeguarding digital assets against unauthorized access within organizational networks. The fundamental components of authentication techniques are protocols that guarantee that only authenticated users access resources. Understanding the dynamics of these protocols is essential for implementing robust security measures and fortifying […]
Deep Dive into Active Directory Group Policies. Securing our organization’s digital infrastructure is paramount in today’s rapidly evolving digital landscape. Active Directory Group Policies are critical in this endeavor, allowing administrators to enforce network security settings and configurations. This article aims to elucidate their significance, functionality, and best practices for safeguarding our digital assets effectively. […]
Securing Remote Access to Active Directory. Securing remote access to Active Directory is critical for organizations worldwide in an increasingly interconnected digital landscape. With the proliferation of remote work arrangements, ensuring robust safeguards against unauthorized entry is paramount to safeguarding sensitive data and maintaining operational integrity. This article delves into essential strategies and best practices […]