Active Directory Series

KEV Catalog: “SMBGhost” Microsoft SMBv3 Remote Code Execution Vulnerability (CVE-2020-0796)

Comments Off

May 24, 2023October 6, 2023

"SMBGhost" is a critical vulnerability that affected SMBv3 in Windows 10 Versions 1903 and 1909. The vulnerability...

by Cody Rubio

KEV Catalog: “HiveNightmare” aka ”SeriousSAM” Vulnerability CVE-2021-36934

Comments Off

May 19, 2023October 6, 2023

CVE-201-36934 is called Microsoft Windows SAM Local Privilege Escalation Vulnerability and is also known by the nicknames...

by Cody Rubio

KEV Catalog: “PrintNightmare” (CVE-2021-34527)

Comments Off

May 10, 2023October 6, 2023

CVE-2021-34527 is a critical Windows Print Spooler vulnerability that allowed malicious actors to remotely inject DLLs and...

by Cody Rubio

Active Directory Series: AS-REP Roasting

Comments Off

May 8, 2023July 13, 2023

AS-REP roasting focuses on cracking the passwords of Active Directory accounts that do not have Kerberos preauthentication...

by Cody Rubio

KEV Catalog: “ZeroLogon” NetLogon Privilege Escalation Vulnerability (CVE-2020-1472)

Comments Off

May 3, 2023October 6, 2023

In July 2020 a critical privilege escalation vulnerability emerged that affected Active Directory environments: CVE-2020-1472. Nicknamed "ZeroLogon",...

by Cody Rubio

Active Directory Series: Silver Ticket Attack

Comments Off

May 1, 2023July 13, 2023

Silver Ticket attacks are a well-known credential access attack in Active Directory environments that focuses on forging...

by Cody Rubio

Active Directory Series: Kerberoasting

Comments Off

April 24, 2023July 13, 2023

Kerberoasting is an Active Directory credential attack that attackers use to access other services in Active Directory...

by Cody Rubio

Active Directory Series: Kerberos Authentication Overview

Comments Off

April 17, 2023July 13, 2023

Active Directory uses the Kerberos protocol to authenticate clients and permit or deny access to different services...

Download our Capabilities Brief

KEV Catalog: “SMBGhost” Microsoft SMBv3 Remote Code Execution Vulnerability (CVE-2020-0796)

by Cody Rubio

KEV Catalog: “HiveNightmare” aka ”SeriousSAM” Vulnerability CVE-2021-36934

by Cody Rubio

KEV Catalog: “PrintNightmare” (CVE-2021-34527)

by Cody Rubio

Active Directory Series: AS-REP Roasting

by Cody Rubio

KEV Catalog: “ZeroLogon” NetLogon Privilege Escalation Vulnerability (CVE-2020-1472)

by Cody Rubio

Active Directory Series: Silver Ticket Attack

by Cody Rubio

Active Directory Series: Kerberoasting

by Cody Rubio

Active Directory Series: Kerberos Authentication Overview

by Cody Rubio

Secured™ Receives 8(a) Certification from the Small Business Administration

Finance By Day, Fiction By Night: Brandon Thomson’s Journey at Secured™

Secured™ Announces the Appointment of Kristie Bender-Carey as CEO Finance

KEV Catalog: Apache CouchDB Remote Privilege Escalation (CVE-2022-24706)

KEV Catalog: “Ghostcat” Apache Tomcat Improper Privilege Management Vulnerability (CVE-2020-1938)

KEV Catalog: “Drupalgeddon2”: Drupal Module Configuration Vulnerability CVE-2018-7600

KEV Catalog: “Spring4Shell” Spring Framework Remote Code Execution Vulnerability (CVE-2022-22965)

KEV Catalog: Debian-specific Redis Server Lua Sandbox Escape Vulnerability (CVE-2022-0543)

KEV Catalog: Apache Airflow “Example DAG” Command Injection (CVE-2020-11978)

KEV Catalog: VMware Spring Cloud Gateway Code Injection Vulnerability (CVE-2022-22947)

KEV Catalog: VMware Tanzu Spring Cloud Function Remote Code Execution Vulnerability (CVE-2022-22963)

KEV Catalog: Red Hat Polkit “pwnkit” Out-of-Bounds Read and Write Vulnerability (CVE-2021-4034)

KEV Catalog: SaltStack Salt Authentication Bypass (CVE-2020-11651)

Ready For a Free Consultation For Any Size Solution?

Company

Services

Contact Us

Category: Active Directory Series

by Cody Rubio

by Cody Rubio

by Cody Rubio

by Cody Rubio

by Cody Rubio

by Cody Rubio

by Cody Rubio

by Cody Rubio

Ready For a Free Consultation For Any Size Solution?

Company

Services

Contact Us