Today's infosec topic is Active Directory. Big topic.. I know.
Please reply with your favorite AD tools for testing and hardening.
I will start:
AD Explorer is pretty awesome:
https://www.blackhillsinfosec.com/domain-goodness-learned-love-ad-explorer/
#SecTopic_ActiveDirectory
Please reply with your favorite AD tools for testing and hardening.
I will start:
AD Explorer is pretty awesome:
https://www.blackhillsinfosec.com/domain-goodness-learned-love-ad-explorer/
#SecTopic_ActiveDirectory
Please disable LLMNR... Now. https://www.blackhillsinfosec.com/how-to-disable-llmnr-why-you-want-to/
PingCastle for AD Hardening https://www.pingcastle.com/
Implementing Sysmon and AppLocker via AD https://www.blackhillsinfosec.com/webcast-implementing-sysmon-and-applocker/
Reading Bloodhound output, but for BlueTeamers: https://github.com/DefensiveOrigins/PlumHound
Oh!! And bloodhound: https://github.com/BloodHoundAD/BloodHound/wiki
Please create honey accounts in Active Directory. https://www.blackhillsinfosec.com/webcast-getting-started-in-cyber-deception/
Your turn. Please share.
Thanks!
Thanks!