all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Most common Active Directory misconfigurations and default settings that put your organization at risk

Add to bookmarks
Oct. 26, 2023, 7 a.m. | Bastien Bossiroy

NVISO Labs blog.nviso.eu

Introduction In this blog post, we will go over the most recurring (and critical) findings that we discovered when auditing the Active Directory environment of different companies, explain why these configurations can be dangerous, how they can be abused by attackers and how they can be mitigated or remediated. First, let’s start with a small … Continue reading Most common Active Directory misconfigurations and default settings that put your organization at risk

active directory ad attackers auditing blog blog post companies critical dc default default settings directory domain controllers environment findings introduction microsoft misconfiguration misconfigurations organization red team red teaming risk security settings

Visit resource

More from blog.nviso.eu / NVISO Labs

Top things that you might not be doing (yet) in Entra Conditional Access – Advanced … 1 month, 2 weeks ago | blog.nviso.eu
access advanced azure azure ad +16
Unpacking Flutter hives 1 month, 3 weeks ago | blog.nviso.eu
access app applications application security +22
Become Big Brother with Microsoft Purview 1 month, 4 weeks ago | blog.nviso.eu
big big brother can companies +31
Covert TLS n-day backdoors: SparkCockpit & SparkTar 2 months ago | blog.nviso.eu
amp applications backdoor backdoors +17
Top things that you might not be doing (yet) in Entra Conditional Access 2 months, 1 week ago | blog.nviso.eu
access azure azure ad b2b +20
Is the Google search bar enough to hack Belgian companies? 3 months, 1 week ago | blog.nviso.eu
applications application security awareness belgium +27
Deobfuscating Android ARM64 strings with Ghidra: Emulating, Patching, and Automating 3 months, 2 weeks ago | blog.nviso.eu
android app application security arm64 +16
Scaling your threat hunting operations with CrowdStrike and PSFalcon 4 months, 3 weeks ago | blog.nviso.eu
agent aid automation blue +22
RPC or Not, Here We Log: Preventing Exploitation and Abuse with RPC Firewall 4 months, 3 weeks ago | blog.nviso.eu
abuse blog blue team deploy +14

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Security Analyst

@ Northwestern Memorial Healthcare | Chicago, IL, United States
View on infosec-jobs.com

GRC Analyst

@ Richemont | Shelton, CT, US
View on infosec-jobs.com

Security Specialist

@ Peraton | Government Site, MD, United States
View on infosec-jobs.com

Information Assurance Security Specialist (IASS)

@ OBXtek Inc. | United States
View on infosec-jobs.com

Cyber Security Technology Analyst

@ Airbus | Bengaluru (Airbus)
View on infosec-jobs.com

Vice President, Cyber Operations Engineer

@ BlackRock | LO9-London - Drapers Gardens
View on infosec-jobs.com
View more jobs