Identity Attack Catalog
Categories
- Active Directory Backup & Recovery (56)
- Active Directory Security (181)
- AD Security 101 (16)
- Community Tools (17)
- Directory Modernization (9)
- From the Front Lines (67)
- Hybrid Identity Protection (60)
- Identity Attack Catalog (10)
- Identity Threat Detection & Response (122)
- Our Mission: Be a Force for Good (14)
- Purple Knight (5)
- The CISO's Perspective (13)
- Threat Research (48)
- Uncategorized (1)
How to Protect Active Directory Against Kerberoasting: AD Security 101
- Daniel Petri
- Aug 25, 2023
Active Directory (AD) remains a crucial backbone for enterprise IT environments, centralizing authentication and authorization for users and computers. However, Active Directory’s importance—coupled with its age and the technical debt it often accrues—makes it a primary target for cyberattacks. One common attack technique, called Kerberoasting, exploits the Kerberos authentication protocol…
How to Prevent a Man-in-the-Middle Attack: AD Security 101
- Daniel Petri
- Jul 13, 2023
A man-in-the-middle attack, also known as an MitM attack, is a form of eavesdropping in an attempt to steal sensitive data, such as user credentials. These attacks can pose a serious threat to organizations' network security, particularly in environments that use Microsoft Active Directory (AD) for identity management. As Active…
