Download our Capabilities Brief

Schedule a Call

Category: Active Directory Series

Home Cybersecurity

Active Directory Series: Introducing AD CS

Comments Off on Active Directory Series: Introducing AD CS

This post introduces Active Directory Certificate Services (AD CS) and topics like: public key infrastructure (PKI), the...

by Cody Rubio
Read More

“Certifried” Active Directory Privilege Escalation Vulnerability (CVE-2022-26923)

Comments Off on “Certifried” Active Directory Privilege Escalation Vulnerability (CVE-2022-26923)

"Certifried" is an Active Directory privilege escalation vulnerability found in AD Certificate Services in May 2022 by...

by Cody Rubio
Read More

Active Directory Series: Critical Profiled Vulnerabilities

Comments Off on Active Directory Series: Critical Profiled Vulnerabilities

This post provides an active list of Active Directory vulnerabilities that Secured has profiled in its Known...

by Cody Rubio
Read More

Active Directory Series: “ZeroLogon” Privilege Escalation Vulnerability

Comments Off on Active Directory Series: “ZeroLogon” Privilege Escalation Vulnerability

In July 2020 a critical privilege escalation vulnerability emerged that affected Active Directory environments: CVE-2020-1472. Nicknamed "ZeroLogon",...

by Cody Rubio
Read More

Active Directory Series: LDAP Reconnaissance

Comments Off on Active Directory Series: LDAP Reconnaissance

LDAP is a protocol that is targeted by attackers to get more information about Active Directory environments....

by Cody Rubio
Read More

Active Directory Series: LAPS Permissions

Comments Off on Active Directory Series: LAPS Permissions

Local Administrator Password Solutions (LAPS) provides various security benefits in Active Directory environments. If LAPS permissions are...

by Cody Rubio
Read More

“PetitPotam” Windows LSA Spoofing Vulnerability (CVE-2021-36942)

Comments Off on “PetitPotam” Windows LSA Spoofing Vulnerability (CVE-2021-36942)

PetitPotam is a NTLM relay attack vulnerability that is often checked for in Active Directory penetration testing....

by Cody Rubio
Read More

Active Directory Series: 10 Reasons to Use CrackMapExec

Comments Off on Active Directory Series: 10 Reasons to Use CrackMapExec

CrackMapExec has various modules and options for Active Directory penetration testing. Here are 10 reasons to check...

by Cody Rubio
Read More

KEV Catalog: “sAMAccountName” “noPac” Privilege Escalation (CVE-2021-42278 and CVE-2021-42287)

Comments Off on KEV Catalog: “sAMAccountName” “noPac” Privilege Escalation (CVE-2021-42278 and CVE-2021-42287)

"sAMAcountName" and "noPac" are two critical Active Directory vulnerabilities that can lead to full Domain compromise. Learn...

by Cody Rubio
Read More

Active Directory Series: DC Sync

Comments Off on Active Directory Series: DC Sync

DC Sync attacks are a serious threat to Active Directory environments. DC Sync attacks occurred in the...

by Cody Rubio
Read More