Some thoughts about Kerberos Golden Tickets

Recently i’ve worked on a cybersecurity incident that involved the use of Silver Tickets on Kerberos.


I think may be useful a brief recap about this attack technique.

Continue reading “Some thoughts about Kerberos Golden Tickets”

My Weekly RoundUp #86 – What happened in the Article 13’s Week?

Last week the European Union’s Copyright Directive was approved by the European Parliament in Strasbourg.
Here some interesting articles about this significant topic, but also more light news.

Continue reading “My Weekly RoundUp #86 – What happened in the Article 13’s Week?”

Abusing Microsoft Exchange for privilege escalation: any user may obtain Domain Admin privileges

The security expert Dirk-jan Mollema discovered a privilege escalation vulnerability in Microsoft Exchange that could be exploited by a user to become a Domain Admin.

Continue reading “Abusing Microsoft Exchange for privilege escalation: any user may obtain Domain Admin privileges”