Semperis Acquires MightyID: Expands True Cyber Resilience Across Multi-IdP Environments
Back to blogs listing

Active Directory Security

Categories

Featured Articles

How to Automatically Undo Risky Changes in Active Directory
  • Huy Kha | Senior Identity & Security Architect
AD Security 101: GPO Logon Script Security
  • Daniel Petri | Senior Training Manager
AD Security 101: Non-Default Security Principals with DCSync Rights
  • Daniel Petri | Senior Training Manager

Chat with an expert

Modernize your AD

Request Demo

Download Purple Knight

Free Active Directory Security Assessment

Read more
Group Policy Security– Tinkering with External Paths

Group Policy Security– Tinkering with External Paths

  • Darren Mar-Elia | VP of Products

If you’ve been following this blog, you know that about 2 and half years ago, I started talking about Group Policy’s precarious role in the typical enterprise’s security posture. Many, if not most, AD shops use GP to perform security hardening on their Windows desktops and servers. This includes everything…

NotPetya, the Russian Wiper

NotPetya, the Russian Wiper

  • Steve Mackay

You know Petya, and Sandworm, and Spyware, and Rootkits. Mimikatz and WannaCry, and backdoors and botnets.But do you recall....... the most damaging attack of all?....NotPetya the Russian Wiper, had a very nasty bite.And if you ever saw it, you would even say “Good Night!”.All of the other malware’s... used to…

Your Active Directory was compromised, is it all lost?

Your Active Directory was compromised, is it all lost?

  • David Lieberman

Following a 10-year stint in virtualization technologies, I joined Semperis and dove into the world of Active Directory. Over the last three years, which included some of the most vicious malware attacks ever documented, I think I have finally come up to speed on this part of the IAM world.…

Retake Control of Attribute Sync to Azure AD

Retake Control of Attribute Sync to Azure AD

  • Darren Mar-Elia | VP of Products

Keeping directory sync in sync with security best practices With Azure AD Connect, synchronizing directory data from on-premises Active Directory to Azure AD is both easy and efficient. But is it possible to have too much of a good thing? Security best practices limit sharing to a strict need-to-know basis.…

Should you upgrade to Active Directory 2016…or stay where you are?

Should you upgrade to Active Directory 2016…or stay where you are?

  • Sean Deuby | Principal Technologist, Americas

Should you upgrade your existing AD forest to Windows Server 2016 Active Directory (aka AD 2016), or should you leave it where it is? Despite the focus and activity around adopting cloud services today, the fact remains that Active Directory continues to underpin it all. In addition to longstanding dominance…

Hackers go phishing

Portrait of a 21st Century Active Directory Attacker

  • Noa Arias

It’s been almost 30 years since the movie “Hackers” was released and many of us, when we think of a cyberattacker, still picture a guy wearing a hoody, hanging in his basement while hacking away at a keyboard to gain notoriety. However, a lot has changed in the past three…

Kerberos at the Company Party

Kerberos at the Company Party

  • Sean Deuby | Principal Technologist, Americas

Back in 1999, I wrote a book on Windows 2000 Server in general, and Active Directory in particular. I try not to look back at what I wrote about AD back then compared to what I know now, but I remain fond of a passage that explained how the Kerberos…

How Do I Protect Against Ransomware?

How Do I Protect Against Ransomware?

  • Joseph Carson

Guest column by Joseph Carson, Chief Security Scientist at Thycotic. “Ransomware” is on the rise using “targeted phishing attacks” and is being used for financial blackmail and poison or corrupt data. No one is excluded from these threats and no company or individual is too small to be a target.…