CrackMapExec (CME) is a powerful post-exploitation tool used by attackers to automate the exploitation of Active Directory networks. Detecting and preventing CME from running within an enterprise environment requires a multi-layered approach that includes network monitoring, endpoint security, and user…
Mimikatz is a powerful hacking tool that allows attackers to extract credentials from Windows systems, such as plaintext passwords, hashes, and Kerberos tickets. Detecting and preventing Mimikatz from running within an enterprise environment involves multiple layers of defense. Here are…
Kerberoast is a hacking technique that targets Kerberos, the authentication protocol used in Windows Active Directory environments. Attackers use Kerberoast to crack service account passwords, ultimately gaining unauthorized access to sensitive resources. To detect and prevent Kerberoast from running within…
Responder is a powerful network analysis and penetration testing tool that can be used to exploit weaknesses in a network. It is designed to intercept and analyze network traffic, particularly NetBIOS Name Service (NBT-NS) and Link-Local Multicast Name Resolution (LLMNR)…
To prevent an attacker and/or a red team from being successful in their mission of hacking, it is essential to implement robust security practices and continuously improve your organization’s security posture. Here are some key steps to protect your systems…
Introduction:We have prepared this hardening guideline to help safely and securely deploy and use the Apache web server. By following these recommendations, you can minimize the risk of cyber attacks and privacy breaches. Conclusion:By following these hardening guidelines, you can…
As organizations increasingly relies on iPhones and iPads for mobile communication and productivity, it is essential that Information Security establish proper security and privacy guidelines to safeguard company and personal data. This document serves as a hardening guideline for the…
Introduction: This document provides guidelines on how to securely and safely use Android devices from a cyber security and privacy perspective. As a company that values the security and privacy of our employees and information, it is crucial to adhere…
Introduction: Below is the top 25 technical controls that should be followed for securing Active Directory (AD). This aims to help provide the best practices for deploying and maintaining Windows Server Active Directory environments. Conclusion: By following these guidelines and…
Introduction: As part of our ongoing commitment to maintaining a strong security posture and protecting the privacy of our employees, customers and company data, we have prepared this guideline to assist you in securely using and deploying MacOS OSX systems.…