Uncategorized
Categories
- Active Directory Backup & Recovery (67)
- Active Directory Security (231)
- AD Security 101 (17)
- Community Tools (24)
- Directory Modernization (9)
- From the Front Lines (69)
- Hybrid Identity Protection (75)
- Identity Attack Catalog (32)
- Identity Threat Detection & Response (160)
- Our Mission: Be a Force for Good (14)
- Purple Knight (5)
- Semperis University (5)
- The CISO's Perspective (16)
- Threat Research (77)
- Uncategorized (3)
Exploiting Ghost SPNs and Kerberos Reflection for SMB Server Privilege Elevation
- Andrea Pierini
- Oct 29, 2025
When misconfigured Service Principal Names (SPNs) and default permissions align, attackers can exploit Kerberos reflection to gain SYSTEM-level access remotely. Even with Microsoft’s security update, Ghost SPNs can still haunt you. Learn why.
Improve Hybrid AD Security with Automated Response and Streamlined Administration
- Eran Gewurtz | Director of Product Management
- Jul 22, 2025
Service accounts are easy to misconfigure, hard to keep track of, and often forgotten, making them ideal entry points for cyber attackers. Learn how DSP expands your ability to discover, monitor, govern, and protect service accounts.
How to Defend Against Password Guessing Attacks
- Daniel Petri | Senior Training Manager
- Jun 13, 2025
Here’s what you need to know about password guessing and how to protect Active Directory—and your organization.
