Mar 3, 2021
Weird GPOs - Netlogon_AvoidPdcOnWan —
Weird Microsoft advice and how to abuse it for remote access sitesOct 17, 2019
AD - Account Lockout vs Disabled —
Disabling an account in AD isn't instant, but a lockout is.Aug 5, 2019
Jumpboxes are not a mitigation for credential theft —
Advice no one reads from Microsoft, but probably should have. Jumpservers are Fake News(TM)Jul 26, 2019
M$ - AlwaysOn VPN first thoughts —
AlwaysOn, initial thoughts and ideasJul 25, 2019
Shitty sysadmins - Applocker —
Applocker - 'May provide protection without being able to provide a robust defence'Jul 24, 2019
Shitty sysadmins - MS14-025 —
findstr /S /I cpassword shouldn't give you domain admin in 2019Jul 16, 2019
Password Audit and Control Guidance - Active Directory —
Stopping users from having stupid passwords in AD