Break things, write reports

active-directory

Mar 3, 2021
Weird GPOs - Netlogon_AvoidPdcOnWanWeird Microsoft advice and how to abuse it for remote access sites
Oct 17, 2019
AD - Account Lockout vs DisabledDisabling an account in AD isn't instant, but a lockout is.
Aug 5, 2019
Jumpboxes are not a mitigation for credential theftAdvice no one reads from Microsoft, but probably should have. Jumpservers are Fake News(TM)
Jul 26, 2019
M$ - AlwaysOn VPN first thoughtsAlwaysOn, initial thoughts and ideas
Jul 25, 2019
Shitty sysadmins - ApplockerApplocker - 'May provide protection without being able to provide a robust defence'
Jul 24, 2019
Shitty sysadmins - MS14-025findstr /S /I cpassword shouldn't give you domain admin in 2019
Jul 16, 2019
Password Audit and Control Guidance - Active DirectoryStopping users from having stupid passwords in AD