RaiPlayDL: a python script to automatically download and merge RaiPlay Radio Podcasts

RaiPlay is the online platform of italian national broadcast company RAI: on this platform a big amount of interesting contents are freely available.

Continue reading “RaiPlayDL: a python script to automatically download and merge RaiPlay Radio Podcasts”

Abusing Group Policy Preference files for password discovery

How attackers can exploit Group Policy Preferences file in order to discover passwords?
And how SysAdmins can mitigate this vulnerability?
Continue reading “Abusing Group Policy Preference files for password discovery”

Abusing Microsoft Exchange for privilege escalation: any user may obtain Domain Admin privileges

The security expert Dirk-jan Mollema discovered a privilege escalation vulnerability in Microsoft Exchange that could be exploited by a user to become a Domain Admin.

Continue reading “Abusing Microsoft Exchange for privilege escalation: any user may obtain Domain Admin privileges”