Biju VargheseinAttivoTechBlogsPreventing samaccountname spoofing and kdc bamboozingThe year 2021 has been challenging for users of Microsoft Active Directory. From late December 2020, we saw significant vulnerability…Dec 23, 2021Dec 23, 2021
Biju VargheseinAttivoTechBlogsProtecting threat actors from taking advantage of Bloodhound 3.0Bloodhound 3.0 with three new attack methods — gMSA Control, OU Control & SID History.Jul 9, 2020Jul 9, 2020
Biju VargheseinAttivoTechBlogsLateral Movement Using SMB Session EnumerationAttackers conduct Session Enumeration attacks by invoking a function called NetSessionEnum against an identified Target Server.Mar 30, 2020Mar 30, 2020