Why Active Directory Attack Paths Matter

Defense is a state of invincibility achieved through strategy.

The Active Directory permissions no one checks

Attackers love shortcuts. Hidden insecure permissions are their express lane to Domain Admin.

Avoid this cyber leadership trap

Here’s what I would do instead.

How insecurely installed 3rd-party software can hurt you

Attackers thrive on easy targets, don’t be one.

MFA on Servers is Security Theatre

Do this to mitigate lateral movement

How to Harden Service Accounts

Three ways to prevent service account compromise.

3 AD Security Checks in 10 Minutes

If I had 10 minutes inside your environment this is where I’d start.

3 Rules for Delegating AD Permissions

If everyone's an admin, no one is in control.

Find AD Attack Paths Without Bloodhound

There’s an easier way to find attack paths in Active Directory than using Bloodhound.

Securing AI Workflows

There’s a lot of hype around “AI security risks,” but most of it boils down to two things...

Guaranteed way to catch threat actors

Attackers are trying to find interesting things. Give them interesting things.

Firewalls are obsolete this is why

Attackers are exploiting edge devices and firewalls more than ever before.

Common Active Directory security mistakes attackers count on

Security applied blindly is just another outage waiting to happen.

Why this ADCS attack failed

But when I ran the ESC8 relaying attack, it failed. The reason was ...

Agent Skills are Malware

The next worm will propagate through agent skills, mark my words.

Paperweight Pentest Reports