Netwrix

Securing Your Group Managed Service Accounts

Oct 13, 2022 By Kevin Joyce In Netwrix

Abusing a gMSA is relatively simple conceptually. First, get its password using a tool like Mimikatz or by querying it directly due to insecure configurations in Active Directory. Since gMSAs are service accounts, they’re usually relatively privileged, so you’ll usually be able to move laterally or escalate. Let’s walk through an example scenario.

Read Post

Netwrix

Read more about Securing Your Group Managed Service Accounts

How to Set Lock Screen Picture on Windows 10 Pro without Group Policy

Oct 12, 2022 By Netwrix In Netwrix

There is a policy setting to set the lock screen picture on Windows 10 Enterprise and Education — but there’s no easy way to do this on Professional. Unless you’ve got Netwrix PolicyPak! Watch this video for step-by-step details.

View Video

Netwrix

Read more about How to Set Lock Screen Picture on Windows 10 Pro without Group Policy

Configure Group Policy Settings to Deploy Real GP using SCCM or Other Management Systems

Oct 11, 2022 By Netwrix In Netwrix

Do you have endpoints that you'd love to manage using real Group Policy, but want to deploy the settings using something else? This video explains how to deliver Group Policy settings with Netwrix PolicyPak, including how to deploy templates, preferences and security settings to your endpoints using SCCM, KACE, Altiris or another desktop management system.

View Video

Netwrix

Security

Read more about Configure Group Policy Settings to Deploy Real GP using SCCM or Other Management Systems

WDigest Clear-Text Passwords: Stealing More than a Hash

Oct 11, 2022 By Kevin Joyce In Netwrix

Digest Authentication is a challenge/response protocol that was primarily used in Windows Server 2003 for LDAP and web-based authentication. It utilizes Hypertext Transfer Protocol (HTTP) and Simple Authentication Security Layer (SASL) exchanges to authenticate. At a high level, a client requests access to something, the authenticating server challenges the client, and the client responds to the challenge by encrypting its response with a key derived from the password.

Read Post

Netwrix

Read more about WDigest Clear-Text Passwords: Stealing More than a Hash

What DNS over HTTPS (DoH) Is & How to Enable in Windows 10

Oct 11, 2022 By Dan Piazza In Netwrix

When your web browser accesses a website, it needs to first translate the friendly URL (such as Netwrix.com) to the public server IP address of the server that hosts that website. This is known as a DNS lookup. Traditional DNS is unencrypted, unlike modern HTTPS web traffic that’s almost entirely secured via HTTPS these days.

Read Post

Netwrix

Read more about What DNS over HTTPS (DoH) Is & How to Enable in Windows 10

How to Configure Internet Explorer Settings and Open IE11 inside Edge through Group Policy

Oct 11, 2022 By Netwrix In Netwrix

In this video, we explore a useful feature of Netwrix PolicyPak — the ability to configure Internet Explorer settings to dynamically set Internet Explorer Enterprise and Document modes. We also explain how to open an Internet Explorer tab inside Microsoft Edge.

View Video

Netwrix

Security

Read more about How to Configure Internet Explorer Settings and Open IE11 inside Edge through Group Policy

How to Use Group Policy and Netwrix PolicyPak to Remove Local Admin Rights

Oct 10, 2022 By Netwrix In Netwrix

This video explains step-by-step how you can use Group Policy and Netwrix PolicyPak to get out of the local admin rights business. Start out by finding where you have local admin rights, and then remove the source using in-box GP preferences. Then use Netwrix PolicyPak to elevate your now-standard users so they can keep doing the (admin-like) things they always have.

View Video

Netwrix

Security

Read more about How to Use Group Policy and Netwrix PolicyPak to Remove Local Admin Rights

Compromising Plaintext Passwords in Active Directory

Oct 6, 2022 By Jeff Warren In Netwrix

A lot of attention gets paid to preventing pass-the-hash and pass-the-ticket attacks, but these tactics limit adversaries to what they can perform from the command line. Compromising a plaintext password gives an attacker unlimited access to an account — which can include access to web applications, VPN, email and more. One way to extract plaintext passwords is through Kerberoasting, but this brute-force technique takes a lot of time and patience.

Read Post

Netwrix

Read more about Compromising Plaintext Passwords in Active Directory

Netwrix StealthDEFEND

Oct 5, 2022 By Netwrix In Netwrix

Netwrix StealthDEFEND helps protect your Active Directory and data by catching even highly sophisticated attacks in their early stages, responding automatically, and quickly getting the full insight required to recover and strengthen your defenses.

View Video

Netwrix

Security

Read more about Netwrix StealthDEFEND

Privilege Escalation with DCShadow

Oct 4, 2022 By Jeff Warren In Netwrix

DCShadow is a feature in the open-source tool mimikatz. In another blog post, we cover without detection once they’ve obtained admin credentials. But DCShadow can also enable an attacker to elevate their privileges. How can a Domain Admin elevate their access even higher? By obtaining admin rights in other forests. Leveraging SID History, an attacker can add administrative SIDs to their user account and obtain admin level rights in other trusted domains and forests.

Read Post

Netwrix

Read more about Privilege Escalation with DCShadow

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Netwrix

Securing Your Group Managed Service Accounts

How to Set Lock Screen Picture on Windows 10 Pro without Group Policy

Configure Group Policy Settings to Deploy Real GP using SCCM or Other Management Systems

WDigest Clear-Text Passwords: Stealing More than a Hash

What DNS over HTTPS (DoH) Is & How to Enable in Windows 10

How to Configure Internet Explorer Settings and Open IE11 inside Edge through Group Policy

How to Use Group Policy and Netwrix PolicyPak to Remove Local Admin Rights

Compromising Plaintext Passwords in Active Directory

Netwrix StealthDEFEND

Privilege Escalation with DCShadow

Monthly Archive

Follow Us