๐๐ฒ๐ณ๐ฎ๐๐น๐ โ ๐๐ฎ๐ฟ๐ฑ๐ฒ๐ป๐ฒ๐ฑ
Real configs. Real fixes. Windows & AD security.
๐๐ผ ๐ฎ๐ป๐ ๐ผ๐ณ ๐๐ผ๐๐ฟ ๐ฝ๐ฟ๐ถ๐๐ถ๐น๐ฒ๐ด๐ฒ๐ฑ ๐ด๐ฟ๐ผ๐๐ฝ๐ ๐น๐ผ๐ผ๐ธ ๐น๐ถ๐ธ๐ฒ ๐๐ต๐ถ๐?
I see this way too often during assessmentsโbloated groups where nobody even remembers why those accounts are there. ๐๐โ๐ ๐ฎ ๐บ๐ฒ๐๐.
If you care about security, ๐ฑ๐ผ๐ปโ๐ ๐ฟ๐ฒ๐ฎ๐ฐ๐ต ๐ณ๐ผ๐ฟ ๐ฝ๐ฟ๐ถ๐๐ถ๐น๐ฒ๐ด๐ฒ๐ฑ ๐ด๐ฟ๐ผ๐๐ฝ๐ every time you need to solve access. Think twice and delegate as little as possible (Least Privilege).
๐๐น๐๐ฎ๐๐ ๐ธ๐ป๐ผ๐ which accounts are in privileged groups and why. The same applies to delegationsโdocument them when you create them. After 5โ10 years, ๐ป๐ผ๐ฏ๐ผ๐ฑ๐ ๐ฟ๐ฒ๐บ๐ฒ๐บ๐ฏ๐ฒ๐ฟ๐, and thatโs where most issues hideโespecially ACL misconfigurations on AD and CA objects, which can lead ๐๐๐ฟ๐ฎ๐ถ๐ด๐ต๐ ๐๐ผ ๐๐ผ๐บ๐ฎ๐ถ๐ป ๐๐ฑ๐บ๐ถ๐ป ๐งจ.
As simple as it sounds, train this ๐บ๐ถ๐ป๐ฑ๐๐ฒ๐ and do things properlyโeven if it takes more time.
Want to check AD-level misconfigurations? ADProbe can help.
You can find my ๐๐ผ๐ผ๐น๐ ๐ฎ๐ป๐ฑ ๐ฐ๐ผ๐๐ฟ๐๐ฒ๐ ๐ผ๐ป ๐บ๐ ๐๐ฒ๐ฏ๐๐ถ๐๐ฒ:
โก๏ธ https://horizon-secured.com/tools/
๐๐๐๐ง๐ฃ โข ๐ฝ๐ช๐๐ก๐ โข ๐ฟ๐๐๐๐ฃ๐
