Guidance from Microsoft on deploying the critical August 2020 security updates; https://support.microsoft.com/en-us/help/4557222/how-to-manage-the-changes-in-netlogon-secure-channel-connections-assoc CVE-2020-1472…
All posts in Windows Server
> A proof of concept exploit has been released for Windows Netlogon vulnerability CVE-2020-1472. We expect it to be used. Install the patch and implement additional instructions in Microsoft article KB4557222. > A proof of concept exploit has been released for Windows Netlogon vulnerability CVE-2020-1472. We expect it to be used. Install the patch and implement additional instructions in Microsoft article KB4557222. https://t.co/dcnlwzdKML — NSA Cyber (@NSACyber) September 18, 2020 [https://t…
> Speaking about CVE-2020-1472 - Just a periodic reminder to check the ACL permissions that have been set on your DC machine accounts in AD. If a non-DA has GenericAll (Full control) for example. It can reset the DC machine account password and later on pull a DCSync attack. > Speaking about CVE-2020-1472 - Just a periodic reminder to check the ACL permissions that have been set on your DC machine accounts in AD. If a non-DA has GenericAll (Full control) for example. It can reset the DC machine…
> Reminder: even though only Win10, Windows Server 2016, & 2019 shipped with inbound SMB1 auditing, we later backported the option to WS2012 R2 & WS 2008 R2 (& equiv clients). Because I am very nice/angryhttps://t.co/TncS4UR1Fo https://t.co/sdRa7VAip6 — Ned Pyle (@NerdPyle) October 2, 2019 [https://twitter.com/NerdPyle/status/1179488496831979522?ref_src=twsrc%5Etfw]…
Great list of domain-hardening ideas here; > Awesome Windows Domain Hardening. A curated list of awesome Security Hardening techniques for Windows, by @PaulWebSec [https://twitter.com/PaulWebSec?ref_src=twsrc%5Etfw] https://t.co/XLlqLjMWKV — DirectoryRanger (@DirectoryRanger) June 17, 2019 [https://twitter.com/DirectoryRanger/status/1140597140831506433?ref_src=twsrc%5Etfw] PaulSec/awesome-windows-domain-hardeningA curated list of awesome Security Hardening techniques for Windows. - PaulSec/awe…