The tale of Enhanced Key (mis)Usage

One of the commonly recommended solutions to increase the security of user accounts in the on-premise Active Directory is to require two-factor authentication using Smart Cards. Not everyone knows that Windows Smart Card implementation has undergone a significant change years ago that has not been clearly reflected in the publicly available documentation. Since Public Key Infrastructure (PKI) security is not a typical piece of knowledge, therefore many enterprises may be at risk.

Hacking Summer Camp: Sniffing and replaying ADFS claims with Fiddler

Wrong Permission Delegation Can Dismantle Your Whole Active Directory!

I’m going to talk about one of the TOP-5 most important things that need to be checked in the Active Directory, Permission Delegation. This is quite overlooked security topic. However, it’s very important to understand how permissions are working in active directory. What are the paths for a potential attacker to compromise our environment and how we can defend ourselves from potential attack?