A Look Inside the Pass-the-PRT Attack
Discover what a Primary Refresh Token is and how cyber-criminals are exploiting it in two different ways to launch Azure Active Directory attacks.
Read moreDiscover what a Primary Refresh Token is and how cyber-criminals are exploiting it in two different ways to launch Azure Active Directory attacks.
Read moreCorrupted log files create a serious issue for administrators and digital forensic experts who need to view their contents. In this tutorial by cybersecurity expert Paula Januszkiewicz, you’ll learn how to recover corrupted EVTX log files and how to access logs that are processed in the memory and make them readable.
Read moreCybersecurity professionals know that they could be called on at any time to recover a user secret. For example, if an employee’s profile is corrupted or user secrets have to be decrypted offline (e.g. during analysis of the forensic image of the operating system).
Find out about some tools capable of decrypting secrets protected using DPAPI and get an outline of how to use them.
Read more