February 2023

4 Service Account Attacks and How to Protect Against Them

Feb 24, 2023 By Jeff Warren In Netwrix

Whether you realize it or not, service accounts represent a major risk to your data security. This article explains the fundamentals of service accounts and how attackers can exploit them so you can prevent yours from being compromised.

Read Post

Netwrix

Read more about 4 Service Account Attacks and How to Protect Against Them

Stealing Credentials with a Security Support Provider (SSP)

Feb 24, 2023 By Jeff Warren In Netwrix

Mimikatz provides attackers with several different ways to steal credentials from memory or extract them from Active Directory. One of the most interesting options is the MemSSP command. An adversary can use this command to register a malicious Security Support Provider (SSP) on a Windows member server or domain controller (DC) — and that SSP will log all passwords in clear text for any users who log on locally to that system.

Read Post

Netwrix

Read more about Stealing Credentials with a Security Support Provider (SSP)

What Is System Hardening?

Feb 22, 2023 By Dirk Schrader In Netwrix

Complex cyberattacks dominate the headlines, making breaches seem sophisticated. In reality, most hacks are unbelievably simple and involve attackers targeting well-known configuration security gaps. In fact, cyberattacks are rather common. According to IBM, 83% of companies have experienced more than one breach while in operation.

Read Post

Netwrix

Read more about What Is System Hardening?

Compromising SQL Server with PowerUpSQL

Feb 17, 2023 By Joe Dibley In Netwrix

If you’re after a toolkit to own Microsoft SQL Server from end to end, what you need is PowerUpSQL. Implemented in PowerShell and as complete as they come, PowerUpSQL has tools to discover, compromise and own just about any SQL system. It’s the whole kill chain in one tool. This article details how to perform the critical attack steps using PowerUpSQL.

Read Post

Netwrix

Read more about Compromising SQL Server with PowerUpSQL

A Guide to Active Directory Linked Attributes

Feb 17, 2023 By Joe Dibley In Netwrix

The Active Directory linked attribute is a special type of Active Directory attribute that is used to describe relationships between objects. This post explains what linked attributes are and how they work.

Read Post

Netwrix

Read more about A Guide to Active Directory Linked Attributes

Netwrix Usercube: Recertification

Feb 15, 2023 By Netwrix In Netwrix

Discover why access rights to your IT systems and data need to be recertified on a regular basis and how you can streamline this essential task with Netwrix Usercube.

View Video

Netwrix

Security

Read more about Netwrix Usercube: Recertification

Why Netwrix Usercube?

Feb 15, 2023 By Netwrix In Netwrix

Learn how Netwrix Usercube helps you ensure strong security, compliance and productivity as users join, leave and change roles in your organization.

View Video

Netwrix

Security

Read more about Why Netwrix Usercube?

Netwrix Usercube: Identity Governance and Administration (IGA)

Feb 15, 2023 By Netwrix In Netwrix

Learn why identity governance and administration (IGA) is the foundation of IT security, see real-world examples of effective IGA implementations and explore the benefits of choosing the right IGA solution.

View Video

Netwrix

Security

Read more about Netwrix Usercube: Identity Governance and Administration (IGA)

PowerShell Tips and Tricks for Scripting in Active Directory Test Environments

Feb 10, 2023 By Joe Dibley In Netwrix

PowerShell is one of the most efficient management methods in the Windows Server world. This article offers tips and tricks to learn about one of the most common scripting scenarios: using PowerShell in test, demo and quality assurance (QA) environments, which frequently need to be rebuilt or adjusted to fit a new need or process. We’ve chosen the most useful PowerShell tips based on real-world experience with colleagues and customers.

Read Post

Netwrix

Read more about PowerShell Tips and Tricks for Scripting in Active Directory Test Environments

Using Windows Defender Credential Guard to Protect Privileged Credentials

Feb 6, 2023 By Joe Dibley In Netwrix

The compromise of a single Active Directory credential can lead to unauthorized access to your servers, applications, virtualization platforms and user files across your enterprise. One of the reasons for credential vulnerability is that Windows stores credentials in the Local Security Authority (LSA), which is a process in memory.

Read Post

Netwrix

Read more about Using Windows Defender Credential Guard to Protect Privileged Credentials

Cutting Down the AD Red Forest

Feb 6, 2023 By Joe Dibley In Netwrix

Microsoft recently updated its guidance for how organizations should approach privileged access in Active Directory (AD). A key component is shifting from the tiered access model (TAM) and the Enhanced Security Admin Environment (ESAE) (also known as the Active Directory Red Forest) to the Enterprise Access Model (EAM). This article explains the drawbacks of the older models and the key principles of EAM.

Read Post

Netwrix

Read more about Cutting Down the AD Red Forest

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

February 2023

4 Service Account Attacks and How to Protect Against Them

Stealing Credentials with a Security Support Provider (SSP)

What Is System Hardening?

Compromising SQL Server with PowerUpSQL

A Guide to Active Directory Linked Attributes

Netwrix Usercube: Recertification

Why Netwrix Usercube?

Netwrix Usercube: Identity Governance and Administration (IGA)

PowerShell Tips and Tricks for Scripting in Active Directory Test Environments

Using Windows Defender Credential Guard to Protect Privileged Credentials

Cutting Down the AD Red Forest

Monthly Archive

Follow Us