Active Directory Archives

Domain Trusts- A Comprehensive Exploitation Guide

June 12, 2024

Understanding domain trusts within Windows Active Directory is now an essential skill in today’s evolving cybersecurity landscape. Trust relationships serve as gateways for malicious actors

Analyzing Firmware and Extracting Filesystem

June 4, 2024

Firmware is an embedded piece of software used in hardware devices to control their functionality, typically stored in nonvolatile memory and designed to provide specific

Abusing AD CS Certificate Template – ESC1, ESC2, ESC3

Understanding Active Directory Certificate Services (AD CS)

May 10, 2024

Understanding Active Directory Certificate Services (AD CS) AD CS is a server role integral to Microsoft’s public key infrastructure (PKI) implementation. It tightly integrates with

Abusing Active Directory Certificate Services: A Comprehensive Guide

April 22, 2024

Organizations operate in an ever-evolving digital environment that poses security threats. Although much attention has been focused on various components of Active Directory (AD), one

Unleashing the Potential of Certificates for Privilege Escalation

April 1, 2024

Maintaining proactive defences against emerging cyber threats is of the utmost importance in today’s rapidly changing cybersecurity environment, and one area that has gained more

Zero Day in Xbox Privilege Escalation using Gaming ServiceEoP

March 14, 2024

Xbox Privilege Escalation is a serious security vulnerability on Xbox gaming platforms that could allow an attacker to escalate user privileges and gain system-level access

Unveiling Moniker Link (CVE-2024-21413): Navigating the Latest Cybersecurity Landscape

March 12, 2024

An intriguing vulnerability in Outlook’s handling of particular hyperlinks has been found, and threat actors have been known to use it in the wild. CVE-2024-21413

Exploiting Weak ACLs on Active Directory Certificate Templates: ESC4

November 23, 2023

In Active Directory (AD) security, one area that has been gaining attention is the exploitation of misconfigured Active Directory Certificate Services (ADCS) and, in particular,

PrintNightmare: The Vulnerability That Shook Windows Systems

October 23, 2023

In recent years, the cybersecurity landscape has been constantly evolving, with new vulnerabilities and exploits emerging on a regular basis. One such vulnerability that made

An In-depth Exploration into WebClient Abuse

October 9, 2023

In red teaming, understanding the potential for lateral movement within a network is crucial. One method that attackers often use for this purpose is WebClient

Exploiting Misconfigured Active Directory Certificate Template – ESC1

August 19, 2023

Certificates are crucial in establishing trust and securing communication within the Active Directory environment. They are used for authentication, encryption, and digital signatures. Certificate Templates

GPO Abuse

July 31, 2023

Group Policy Objects (GPOs) are a powerful tool administrators use to manage and enforce security policies across a domain. However, in the wrong hands, GPOs