I did a thing!
15.10.2025 14:08 β π 21 π 2 π¬ 1 π 0I did a thing!
15.10.2025 14:08 β π 21 π 2 π¬ 1 π 0
Som dessutom ska tΓΆmmas var 6:e vecka (istΓ€llet fΓΆr varannan). Blir hΓ€rlig jΓ€sning i solen pΓ₯ sommaren.
msva.se/avfall/narso...
Session management is a critical component of application security. In our new blog, Senior Security Consultant Aaron James provides a quick reference cheat sheet and detailed guidance on cookie session testing to help you yield high rewards. Read it now!
trustedsec.com/blog/appsec-...
nginx 1.19.2 π«£
15.05.2025 16:54 β π 0 π 0 π¬ 0 π 0π MIM just started
22.04.2025 15:43 β π 0 π 0 π¬ 0 π 0
How do you meaningfully improve the security of your AD environment?
Run these free tools quarterly:
- PingCastle
- ScriptSentry
- Locksmith
- ADeleginator
Read about our progress on securing Microsoft in our Secure Future Initiative update:
21.04.2025 17:52 β π 33 π 9 π¬ 0 π 0I think they in general will resell it to the customer with some additional $ added to the bill.
17.04.2025 17:49 β π 1 π 0 π¬ 1 π 0
I'm not 100% updated on W2025SB/OSConfig but it sure looks amazing.
What's applying the settings under the hood?
What happens if W2025SB conflict a GPO setting?
Will they fight each other for eternity like GPO vs DSC or is there some WARN about conflicts?
PLEASE RP: free Windows Server 2025 Security Advice Book...
techcommunity.microsoft.com/blog/itopsta...
I think Cloud Identity summit is still open
@identitysummit.bsky.social
www.identitysummit.cloud
Yes, I was thinking about ATA π
08.04.2025 19:07 β π 1 π 0 π¬ 0 π 0Like the software that you port mirrored the traffic to/from DCs to find lateral movement etc. and had installed in your local datacenter without Azure involvement.
08.04.2025 17:50 β π 0 π 0 π¬ 1 π 0
Cloud #IdentitySummit 2025 is back!
Save the date and join this community event with #IdentitySecurity, #MicrosoftEntra, and #CloudIdentity deep dive sessions in Dortmund, Germany.
Call for Papers is open now:
sessionize.com/cloud-identi...
Stay tuned for more details:
www.identitysummit.cloud
Det framgΓ₯r ju inte riktigt om de bara klickat pΓ₯ en lΓ€nk eller om de ocksΓ₯ gjort nΓ₯got mer. Men absolut bΓΆr man ha mer rigorΓΆsa mekanismer pΓ₯ plats som skyddar IT-miljΓΆn Γ€n bara de facto att en lΓ€nk har besΓΆkts.
06.04.2025 14:42 β π 0 π 0 π¬ 0 π 08-9 char password? π€―
27.03.2025 10:49 β π 3 π 1 π¬ 1 π 0![[D25] Exploiting Token Based Authentication - Dr Nestori Syynimaa](https://cdn.bsky.app/img/feed_thumbnail/plain/did:plc:7s2w5w2dp3ftc645u7w3oat6/bafkreigujzysr4nycjzdpixaq2ewe6fjr7leh75ylmw3fognqjyn6xne5e@jpeg)
So pin/cert possible to steal during some circumstances. Otherwise PRTs are popular hunting stuff when hybrid/cloud mode is used (often the case with WHfB enabled)
Some sessions about it
youtu.be/mFJ-NUnFBac?...
youtu.be/b-9d5UXOcaA?...
100% secure?! π€― Against what?
20.03.2025 06:54 β π 0 π 0 π¬ 1 π 0Elcykel med extra batterier ger skjuts en bit i alla fall
16.03.2025 20:51 β π 0 π 0 π¬ 0 π 0But your findings with CertRefreshInterval/fMonitorCertificate + techcommunity.microsoft.com/blog/askds/r... indicate otherwise I guess, where Enroll is enough since the service handle it automatically anyway.
13.03.2025 20:32 β π 1 π 0 π¬ 1 π 0
Thanks a lot, awesome findings.
It's a bit confusing that online material and even documentation like this learn.microsoft.com/en-us/previo... says that the template should have auto enroll enabled.
And then, since the template only needs enroll, the terminal service also must keep track of expiration date etc. I assume? So the service knows when to fire a new request against the configured GPO template name.
13.03.2025 18:47 β π 0 π 0 π¬ 1 π 0
The template should have only enroll techcommunity.microsoft.com/blog/askds/r...
@awakecoding.com do you know if there is any more info available regarding the magic that happens behind the scene when Remote Desktop Configuration service enroll new certs for remote desktop authentication?
Trying to understand a bit more about the "Remote Desktop Authentication" certs and the setting enroll vs auto enroll on the template.
Should the template have enroll or auto enroll configured?
No worries, just a last minute patch π
12.03.2025 14:43 β π 0 π 0 π¬ 0 π 0
My @disobeyfi.bsky.social talk is finally out! Link to video and slides available at aadinternals.com/talks
And yes, @notmynick.bsky.social used some weird filter, I'm not that fat nor old π
ποΈ BIG NEWS: I'm launching Entra.Chat - the podcast identity pros have been waiting for!
After years in the identity trenches, I've seen a lot - the midnight calls, the authentication puzzles, and those "how is this even possible?" moments.
"Hon har varnat fΓΆr att verktyget krΓ€ver en stor investering fΓΆr skolorna nΓ€r det gΓ€ller nΓ€tkapacitet, federerad inloggning [...] och multifaktorautenticering"
Inkluderar man detta i kostnaden fΓΆr alla skolor sΓ₯ misstΓ€nker jag siffrorna Γ€r betydligt hΓΆgre.
security.txt existerar vΓ€ldigt sΓ€llan, tyvΓ€rr. Γven om det bara Γ€r en liten del i det hela.
19.02.2025 17:43 β π 2 π 0 π¬ 0 π 0
Yes, how TLS is used in RDP.
I was thinking about the padlock in mstsc that you get when remote host has a certificate enrolled with the correct EKU saying something like the connection was secured with Kerberos and server certificate. And how Kerberos and TLS play together in that part.
