-
"Password spraying" - testing a list of credentials for a known account - is a subset of credential cracking but the term is getting increased global coverage ([ACSC](https://www.cyber.gov.au/threats/…
-
### Area
Malware reports
### Parent threat
Credential Access, Defense Evasion, Discovery, Lateral Movement, Collection, Command and Control, Impact
### Finding
https://www.crowdstrike.com/blog/an…
-
## Breaching Active Directory
- OSINT and Phishing
- NTLM Authenticated Services--> password spraying attack
- LDAP Bind Credentials--> Create a rogue LDAP server
- Authentication Relays--> Inte…
-
# Problem
Certain compliance situations require us to prevent brute force password guessing for logins.
`UserPassBase` and implementing classes do not have a mechanism to prevent brute force passw…
-
*Original comment by @epixa:*
### Taken from https://github.com/elastic/kibana/issues/11335
-----
## Feature Request and Motivation
Is it possible to rate limit the logins of users who've made…
-
I am not sure if this is a missing feature or if I just don't use Bloodhound properly, but the local admins section on Bloodhound only shows the Domain users part of the local administrators group. Is…
-
[tags]activedirectory,training[/tags]
[short_descr]Create a vulnerable active directory to test most of the active directory attacks in a local lab.[/short_descr]
[link] https://github.com/safebuffer…
-
please provide a way to lock the wallet (without having to close the wallet, that is).
-
-
### SY0-701 Themenbereiche
- Allgemeine Sicherheitskonzepte / General Security Concepts: 12%
- Bedrohungen, Schwachstellen und Gegenmaßnahmen / Threats, Vulnerabilities, and Mitigations: 22%
- Sich…