CINXE.COM

<!DOCTYPE html>   <html lang="en-US" prefix="og: http://ogp.me/ns#">  <head> <meta charset="UTF-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <meta name="viewport" content="width=device-width, initial-scale=1"> <title>Windows10 – Active Directory Security</title> <meta name='robots' content='max-image-preview:large' /> <link rel="alternate" type="application/rss+xml" title="Active Directory Security » Feed" href="https://adsecurity.org/?feed=rss2" /> <link rel="alternate" type="application/rss+xml" title="Active Directory Security » Comments Feed" href="https://adsecurity.org/?feed=comments-rss2" /> <link rel="alternate" type="application/rss+xml" title="Active Directory Security » Windows10 Tag Feed" href="https://adsecurity.org/?feed=rss2&tag=windows10" /> <script type="text/javascript"> /* <![CDATA[ */ window._wpemojiSettings = {"baseUrl":"https:\/\/s.w.org\/images\/core\/emoji\/15.0.3\/72x72\/","ext":".png","svgUrl":"https:\/\/s.w.org\/images\/core\/emoji\/15.0.3\/svg\/","svgExt":".svg","source":{"concatemoji":"https:\/\/adsecurity.org\/wp-includes\/js\/wp-emoji-release.min.js?ver=6.5.5"}}; /*! This file is auto-generated */ !function(i,n){var o,s,e;function c(e){try{var t={supportTests:e,timestamp:(new Date).valueOf()};sessionStorage.setItem(o,JSON.stringify(t))}catch(e){}}function p(e,t,n){e.clearRect(0,0,e.canvas.width,e.canvas.height),e.fillText(t,0,0);var t=new Uint32Array(e.getImageData(0,0,e.canvas.width,e.canvas.height).data),r=(e.clearRect(0,0,e.canvas.width,e.canvas.height),e.fillText(n,0,0),new Uint32Array(e.getImageData(0,0,e.canvas.width,e.canvas.height).data));return t.every(function(e,t){return e===r[t]})}function u(e,t,n){switch(t){case"flag":return n(e,"\ud83c\udff3\ufe0f\u200d\u26a7\ufe0f","\ud83c\udff3\ufe0f\u200b\u26a7\ufe0f")?!1:!n(e,"\ud83c\uddfa\ud83c\uddf3","\ud83c\uddfa\u200b\ud83c\uddf3")&&!n(e,"\ud83c\udff4\udb40\udc67\udb40\udc62\udb40\udc65\udb40\udc6e\udb40\udc67\udb40\udc7f","\ud83c\udff4\u200b\udb40\udc67\u200b\udb40\udc62\u200b\udb40\udc65\u200b\udb40\udc6e\u200b\udb40\udc67\u200b\udb40\udc7f");case"emoji":return!n(e,"\ud83d\udc26\u200d\u2b1b","\ud83d\udc26\u200b\u2b1b")}return!1}function f(e,t,n){var r="undefined"!=typeof WorkerGlobalScope&&self instanceof WorkerGlobalScope?new OffscreenCanvas(300,150):i.createElement("canvas"),a=r.getContext("2d",{willReadFrequently:!0}),o=(a.textBaseline="top",a.font="600 32px Arial",{});return e.forEach(function(e){o[e]=t(a,e,n)}),o}function t(e){var t=i.createElement("script");t.src=e,t.defer=!0,i.head.appendChild(t)}"undefined"!=typeof Promise&&(o="wpEmojiSettingsSupports",s=["flag","emoji"],n.supports={everything:!0,everythingExceptFlag:!0},e=new Promise(function(e){i.addEventListener("DOMContentLoaded",e,{once:!0})}),new Promise(function(t){var n=function(){try{var e=JSON.parse(sessionStorage.getItem(o));if("object"==typeof e&&"number"==typeof e.timestamp&&(new Date).valueOf()<e.timestamp+604800&&"object"==typeof e.supportTests)return e.supportTests}catch(e){}return null}();if(!n){if("undefined"!=typeof Worker&&"undefined"!=typeof OffscreenCanvas&&"undefined"!=typeof URL&&URL.createObjectURL&&"undefined"!=typeof Blob)try{var e="postMessage("+f.toString()+"("+[JSON.stringify(s),u.toString(),p.toString()].join(",")+"));",r=new Blob([e],{type:"text/javascript"}),a=new Worker(URL.createObjectURL(r),{name:"wpTestEmojiSupports"});return void(a.onmessage=function(e){c(n=e.data),a.terminate(),t(n)})}catch(e){}c(n=f(s,u,p))}t(n)}).then(function(e){for(var t in e)n.supports[t]=e[t],n.supports.everything=n.supports.everything&&n.supports[t],"flag"!==t&&(n.supports.everythingExceptFlag=n.supports.everythingExceptFlag&&n.supports[t]);n.supports.everythingExceptFlag=n.supports.everythingExceptFlag&&!n.supports.flag,n.DOMReady=!1,n.readyCallback=function(){n.DOMReady=!0}}).then(function(){return e}).then(function(){var e;n.supports.everything||(n.readyCallback(),(e=n.source||{}).concatemoji?t(e.concatemoji):e.wpemoji&&e.twemoji&&(t(e.twemoji),t(e.wpemoji)))}))}((window,document),window._wpemojiSettings); /* ]]> */ </script> <style id='wp-emoji-styles-inline-css' type='text/css'> img.wp-smiley, img.emoji { display: inline !important; border: none !important; box-shadow: none !important; height: 1em !important; width: 1em !important; margin: 0 0.07em !important; vertical-align: -0.1em !important; background: none !important; padding: 0 !important; } </style> <link rel='stylesheet' id='wp-block-library-css' href='https://adsecurity.org/wp-includes/css/dist/block-library/style.min.css?ver=6.5.5' type='text/css' media='all' /> <style id='classic-theme-styles-inline-css' type='text/css'> /*! This file is auto-generated */ .wp-block-button__link{color:#fff;background-color:#32373c;border-radius:9999px;box-shadow:none;text-decoration:none;padding:calc(.667em + 2px) calc(1.333em + 2px);font-size:1.125em}.wp-block-file__button{background:#32373c;color:#fff;text-decoration:none} </style> <style id='global-styles-inline-css' type='text/css'> body{--wp--preset--color--black: #000000;--wp--preset--color--cyan-bluish-gray: #abb8c3;--wp--preset--color--white: #ffffff;--wp--preset--color--pale-pink: #f78da7;--wp--preset--color--vivid-red: #cf2e2e;--wp--preset--color--luminous-vivid-orange: #ff6900;--wp--preset--color--luminous-vivid-amber: #fcb900;--wp--preset--color--light-green-cyan: #7bdcb5;--wp--preset--color--vivid-green-cyan: #00d084;--wp--preset--color--pale-cyan-blue: #8ed1fc;--wp--preset--color--vivid-cyan-blue: #0693e3;--wp--preset--color--vivid-purple: #9b51e0;--wp--preset--gradient--vivid-cyan-blue-to-vivid-purple: linear-gradient(135deg,rgba(6,147,227,1) 0%,rgb(155,81,224) 100%);--wp--preset--gradient--light-green-cyan-to-vivid-green-cyan: linear-gradient(135deg,rgb(122,220,180) 0%,rgb(0,208,130) 100%);--wp--preset--gradient--luminous-vivid-amber-to-luminous-vivid-orange: linear-gradient(135deg,rgba(252,185,0,1) 0%,rgba(255,105,0,1) 100%);--wp--preset--gradient--luminous-vivid-orange-to-vivid-red: linear-gradient(135deg,rgba(255,105,0,1) 0%,rgb(207,46,46) 100%);--wp--preset--gradient--very-light-gray-to-cyan-bluish-gray: linear-gradient(135deg,rgb(238,238,238) 0%,rgb(169,184,195) 100%);--wp--preset--gradient--cool-to-warm-spectrum: linear-gradient(135deg,rgb(74,234,220) 0%,rgb(151,120,209) 20%,rgb(207,42,186) 40%,rgb(238,44,130) 60%,rgb(251,105,98) 80%,rgb(254,248,76) 100%);--wp--preset--gradient--blush-light-purple: linear-gradient(135deg,rgb(255,206,236) 0%,rgb(152,150,240) 100%);--wp--preset--gradient--blush-bordeaux: linear-gradient(135deg,rgb(254,205,165) 0%,rgb(254,45,45) 50%,rgb(107,0,62) 100%);--wp--preset--gradient--luminous-dusk: linear-gradient(135deg,rgb(255,203,112) 0%,rgb(199,81,192) 50%,rgb(65,88,208) 100%);--wp--preset--gradient--pale-ocean: linear-gradient(135deg,rgb(255,245,203) 0%,rgb(182,227,212) 50%,rgb(51,167,181) 100%);--wp--preset--gradient--electric-grass: linear-gradient(135deg,rgb(202,248,128) 0%,rgb(113,206,126) 100%);--wp--preset--gradient--midnight: linear-gradient(135deg,rgb(2,3,129) 0%,rgb(40,116,252) 100%);--wp--preset--font-size--small: 14px;--wp--preset--font-size--medium: 20px;--wp--preset--font-size--large: 20px;--wp--preset--font-size--x-large: 42px;--wp--preset--font-size--tiny: 10px;--wp--preset--font-size--regular: 16px;--wp--preset--font-size--larger: 26px;--wp--preset--spacing--20: 0.44rem;--wp--preset--spacing--30: 0.67rem;--wp--preset--spacing--40: 1rem;--wp--preset--spacing--50: 1.5rem;--wp--preset--spacing--60: 2.25rem;--wp--preset--spacing--70: 3.38rem;--wp--preset--spacing--80: 5.06rem;--wp--preset--shadow--natural: 6px 6px 9px rgba(0, 0, 0, 0.2);--wp--preset--shadow--deep: 12px 12px 50px rgba(0, 0, 0, 0.4);--wp--preset--shadow--sharp: 6px 6px 0px rgba(0, 0, 0, 0.2);--wp--preset--shadow--outlined: 6px 6px 0px -3px rgba(255, 255, 255, 1), 6px 6px rgba(0, 0, 0, 1);--wp--preset--shadow--crisp: 6px 6px 0px rgba(0, 0, 0, 1);}:where(.is-layout-flex){gap: 0.5em;}:where(.is-layout-grid){gap: 0.5em;}body .is-layout-flex{display: flex;}body .is-layout-flex{flex-wrap: wrap;align-items: center;}body .is-layout-flex > *{margin: 0;}body .is-layout-grid{display: grid;}body .is-layout-grid > *{margin: 0;}:where(.wp-block-columns.is-layout-flex){gap: 2em;}:where(.wp-block-columns.is-layout-grid){gap: 2em;}:where(.wp-block-post-template.is-layout-flex){gap: 1.25em;}:where(.wp-block-post-template.is-layout-grid){gap: 1.25em;}.has-black-color{color: var(--wp--preset--color--black) !important;}.has-cyan-bluish-gray-color{color: var(--wp--preset--color--cyan-bluish-gray) !important;}.has-white-color{color: var(--wp--preset--color--white) !important;}.has-pale-pink-color{color: var(--wp--preset--color--pale-pink) !important;}.has-vivid-red-color{color: var(--wp--preset--color--vivid-red) !important;}.has-luminous-vivid-orange-color{color: var(--wp--preset--color--luminous-vivid-orange) !important;}.has-luminous-vivid-amber-color{color: var(--wp--preset--color--luminous-vivid-amber) !important;}.has-light-green-cyan-color{color: var(--wp--preset--color--light-green-cyan) !important;}.has-vivid-green-cyan-color{color: var(--wp--preset--color--vivid-green-cyan) !important;}.has-pale-cyan-blue-color{color: var(--wp--preset--color--pale-cyan-blue) !important;}.has-vivid-cyan-blue-color{color: var(--wp--preset--color--vivid-cyan-blue) !important;}.has-vivid-purple-color{color: var(--wp--preset--color--vivid-purple) !important;}.has-black-background-color{background-color: var(--wp--preset--color--black) !important;}.has-cyan-bluish-gray-background-color{background-color: var(--wp--preset--color--cyan-bluish-gray) !important;}.has-white-background-color{background-color: var(--wp--preset--color--white) !important;}.has-pale-pink-background-color{background-color: var(--wp--preset--color--pale-pink) !important;}.has-vivid-red-background-color{background-color: var(--wp--preset--color--vivid-red) !important;}.has-luminous-vivid-orange-background-color{background-color: var(--wp--preset--color--luminous-vivid-orange) !important;}.has-luminous-vivid-amber-background-color{background-color: var(--wp--preset--color--luminous-vivid-amber) !important;}.has-light-green-cyan-background-color{background-color: var(--wp--preset--color--light-green-cyan) !important;}.has-vivid-green-cyan-background-color{background-color: var(--wp--preset--color--vivid-green-cyan) !important;}.has-pale-cyan-blue-background-color{background-color: var(--wp--preset--color--pale-cyan-blue) !important;}.has-vivid-cyan-blue-background-color{background-color: var(--wp--preset--color--vivid-cyan-blue) !important;}.has-vivid-purple-background-color{background-color: var(--wp--preset--color--vivid-purple) !important;}.has-black-border-color{border-color: var(--wp--preset--color--black) !important;}.has-cyan-bluish-gray-border-color{border-color: var(--wp--preset--color--cyan-bluish-gray) !important;}.has-white-border-color{border-color: var(--wp--preset--color--white) !important;}.has-pale-pink-border-color{border-color: var(--wp--preset--color--pale-pink) !important;}.has-vivid-red-border-color{border-color: var(--wp--preset--color--vivid-red) !important;}.has-luminous-vivid-orange-border-color{border-color: var(--wp--preset--color--luminous-vivid-orange) !important;}.has-luminous-vivid-amber-border-color{border-color: var(--wp--preset--color--luminous-vivid-amber) !important;}.has-light-green-cyan-border-color{border-color: var(--wp--preset--color--light-green-cyan) !important;}.has-vivid-green-cyan-border-color{border-color: var(--wp--preset--color--vivid-green-cyan) !important;}.has-pale-cyan-blue-border-color{border-color: var(--wp--preset--color--pale-cyan-blue) !important;}.has-vivid-cyan-blue-border-color{border-color: var(--wp--preset--color--vivid-cyan-blue) !important;}.has-vivid-purple-border-color{border-color: var(--wp--preset--color--vivid-purple) !important;}.has-vivid-cyan-blue-to-vivid-purple-gradient-background{background: var(--wp--preset--gradient--vivid-cyan-blue-to-vivid-purple) !important;}.has-light-green-cyan-to-vivid-green-cyan-gradient-background{background: var(--wp--preset--gradient--light-green-cyan-to-vivid-green-cyan) !important;}.has-luminous-vivid-amber-to-luminous-vivid-orange-gradient-background{background: var(--wp--preset--gradient--luminous-vivid-amber-to-luminous-vivid-orange) !important;}.has-luminous-vivid-orange-to-vivid-red-gradient-background{background: var(--wp--preset--gradient--luminous-vivid-orange-to-vivid-red) !important;}.has-very-light-gray-to-cyan-bluish-gray-gradient-background{background: var(--wp--preset--gradient--very-light-gray-to-cyan-bluish-gray) !important;}.has-cool-to-warm-spectrum-gradient-background{background: var(--wp--preset--gradient--cool-to-warm-spectrum) !important;}.has-blush-light-purple-gradient-background{background: var(--wp--preset--gradient--blush-light-purple) !important;}.has-blush-bordeaux-gradient-background{background: var(--wp--preset--gradient--blush-bordeaux) !important;}.has-luminous-dusk-gradient-background{background: var(--wp--preset--gradient--luminous-dusk) !important;}.has-pale-ocean-gradient-background{background: var(--wp--preset--gradient--pale-ocean) !important;}.has-electric-grass-gradient-background{background: var(--wp--preset--gradient--electric-grass) !important;}.has-midnight-gradient-background{background: var(--wp--preset--gradient--midnight) !important;}.has-small-font-size{font-size: var(--wp--preset--font-size--small) !important;}.has-medium-font-size{font-size: var(--wp--preset--font-size--medium) !important;}.has-large-font-size{font-size: var(--wp--preset--font-size--large) !important;}.has-x-large-font-size{font-size: var(--wp--preset--font-size--x-large) !important;} .wp-block-navigation a:where(:not(.wp-element-button)){color: inherit;} :where(.wp-block-post-template.is-layout-flex){gap: 1.25em;}:where(.wp-block-post-template.is-layout-grid){gap: 1.25em;} :where(.wp-block-columns.is-layout-flex){gap: 2em;}:where(.wp-block-columns.is-layout-grid){gap: 2em;} .wp-block-pullquote{font-size: 1.5em;line-height: 1.6;} </style> <link rel='stylesheet' id='bootstrap-css' href='https://adsecurity.org/wp-content/themes/graphene/bootstrap/css/bootstrap.min.css?ver=6.5.5' type='text/css' media='all' /> <link rel='stylesheet' id='font-awesome-css' href='https://adsecurity.org/wp-content/themes/graphene/fonts/font-awesome/css/font-awesome.min.css?ver=6.5.5' type='text/css' media='all' /> <link rel='stylesheet' id='graphene-css' href='https://adsecurity.org/wp-content/themes/graphene/style.css?ver=2.8.4' type='text/css' media='screen' /> <link rel='stylesheet' id='graphene-responsive-css' href='https://adsecurity.org/wp-content/themes/graphene/responsive.css?ver=2.8.4' type='text/css' media='all' /> <link rel='stylesheet' id='graphene-blocks-css' href='https://adsecurity.org/wp-content/themes/graphene/blocks.css?ver=2.8.4' type='text/css' media='all' /> <style id='akismet-widget-style-inline-css' type='text/css'> .a-stats { --akismet-color-mid-green: #357b49; --akismet-color-white: #fff; --akismet-color-light-grey: #f6f7f7; max-width: 350px; width: auto; } .a-stats * { all: unset; box-sizing: border-box; } .a-stats strong { font-weight: 600; } .a-stats a.a-stats__link, .a-stats a.a-stats__link:visited, .a-stats a.a-stats__link:active { background: var(--akismet-color-mid-green); border: none; box-shadow: none; border-radius: 8px; color: var(--akismet-color-white); cursor: pointer; display: block; font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', 'Roboto', 'Oxygen-Sans', 'Ubuntu', 'Cantarell', 'Helvetica Neue', sans-serif; font-weight: 500; padding: 12px; text-align: center; text-decoration: none; transition: all 0.2s ease; } /* Extra specificity to deal with TwentyTwentyOne focus style */ .widget .a-stats a.a-stats__link:focus { background: var(--akismet-color-mid-green); color: var(--akismet-color-white); text-decoration: none; } .a-stats a.a-stats__link:hover { filter: brightness(110%); box-shadow: 0 4px 12px rgba(0, 0, 0, 0.06), 0 0 2px rgba(0, 0, 0, 0.16); } .a-stats .count { color: var(--akismet-color-white); display: block; font-size: 1.5em; line-height: 1.4; padding: 0 13px; white-space: nowrap; } </style> <script type="text/javascript" src="https://adsecurity.org/wp-includes/js/jquery/jquery.min.js?ver=3.7.1" id="jquery-core-js"></script> <script type="text/javascript" src="https://adsecurity.org/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1" id="jquery-migrate-js"></script> <script defer type="text/javascript" src="https://adsecurity.org/wp-content/themes/graphene/bootstrap/js/bootstrap.min.js?ver=2.8.4" id="bootstrap-js"></script> <script defer type="text/javascript" src="https://adsecurity.org/wp-content/themes/graphene/js/bootstrap-hover-dropdown/bootstrap-hover-dropdown.min.js?ver=2.8.4" id="bootstrap-hover-dropdown-js"></script> <script defer type="text/javascript" src="https://adsecurity.org/wp-content/themes/graphene/js/bootstrap-submenu/bootstrap-submenu.min.js?ver=2.8.4" id="bootstrap-submenu-js"></script> <script defer type="text/javascript" src="https://adsecurity.org/wp-content/themes/graphene/js/jquery.infinitescroll.min.js?ver=2.8.4" id="infinite-scroll-js"></script> <script type="text/javascript" id="graphene-js-extra"> /* <![CDATA[ */ var grapheneJS = {"siteurl":"https:\/\/adsecurity.org","ajaxurl":"https:\/\/adsecurity.org\/wp-admin\/admin-ajax.php","templateUrl":"https:\/\/adsecurity.org\/wp-content\/themes\/graphene","isSingular":"","enableStickyMenu":"","shouldShowComments":"1","commentsOrder":"newest","sliderDisable":"","sliderInterval":"7000","infScrollBtnLbl":"Load more","infScrollOn":"","infScrollCommentsOn":"","totalPosts":"8","postsPerPage":"10","isPageNavi":"","infScrollMsgText":"Fetching window.grapheneInfScrollItemsPerPage of window.grapheneInfScrollItemsLeft items left ...","infScrollMsgTextPlural":"Fetching window.grapheneInfScrollItemsPerPage of window.grapheneInfScrollItemsLeft items left ...","infScrollFinishedText":"All loaded!","commentsPerPage":"50","totalComments":"1","infScrollCommentsMsg":"Fetching window.grapheneInfScrollCommentsPerPage of window.grapheneInfScrollCommentsLeft comments left ...","infScrollCommentsMsgPlural":"Fetching window.grapheneInfScrollCommentsPerPage of window.grapheneInfScrollCommentsLeft comments left ...","infScrollCommentsFinishedMsg":"All comments loaded!","disableLiveSearch":"1","txtNoResult":"No result found.","isMasonry":""}; /* ]]> */ </script> <script defer type="text/javascript" src="https://adsecurity.org/wp-content/themes/graphene/js/graphene.js?ver=2.8.4" id="graphene-js"></script> <script type="text/javascript" id="wpstg-global-js-extra"> /* <![CDATA[ */ var wpstg = {"nonce":"3b88767ecf"}; /* ]]> */ </script> <script type="text/javascript" src="https://adsecurity.org/wp-content/plugins/wp-staging-pro/assets/js/dist/wpstg-blank-loader.min.js?ver=6.5.5" id="wpstg-global-js"></script> <link rel="https://api.w.org/" href="https://adsecurity.org/index.php?rest_route=/" /><link rel="alternate" type="application/json" href="https://adsecurity.org/index.php?rest_route=/wp/v2/tags/494" /><link rel="EditURI" type="application/rsd+xml" title="RSD" href="https://adsecurity.org/xmlrpc.php?rsd" /> <meta name="generator" content="WordPress 6.5.5" /> <script> WebFontConfig = { google: { families: ["Lato:400,400i,700,700i&display=swap"] } }; (function(d) { var wf = d.createElement('script'), s = d.scripts[0]; wf.src = 'https://ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js'; wf.async = true; s.parentNode.insertBefore(wf, s); })(document); </script> <style type="text/css"> .header_title, .header_title a, .header_title a:visited, .header_title a:hover, .header_desc {color:#000000}.carousel, .carousel .item{height:400px}@media (max-width: 991px) {.carousel, .carousel .item{height:250px}}#header{max-height:198px}@media (min-width: 1200px) {.container {width:1280px}} </style> <style type="text/css">.recentcomments a{display:inline !important;padding:0 !important;margin:0 !important;}</style> </head> <body class="archive tag tag-windows10 tag-494 custom-background wp-embed-responsive layout-boxed two_col_left two-columns"> <div class="container boxed-wrapper"> <div id="top-bar" class="row clearfix top-bar "> <div class="col-md-12 top-bar-items"> <ul class="social-profiles"> <li class="social-profile social-profile-rss"> <a href="https://adsecurity.org/?feed=rss2" title="Subscribe to Tech, News, and Other Ideations's RSS feed" id="social-id-1" class="mysocial social-rss"> <i class="fa fa-rss"></i> </a> </li> </ul> <button type="button" class="search-toggle navbar-toggle collapsed" data-toggle="collapse" data-target="#top_search"> <span class="sr-only">Toggle search form</span> <i class="fa fa-search-plus"></i> </button> <div id="top_search" class="top-search-form"> <form class="searchform" method="get" action="https://adsecurity.org"> <div class="input-group"> <div class="form-group live-search-input"> <label for="s" class="screen-reader-text">Search for:</label> <input type="text" id="s" name="s" class="form-control" placeholder="Search"> </div> <span class="input-group-btn"> <button class="btn btn-default" type="submit"><i class="fa fa-search"></i></button> </span> </div> </form> </div> </div> </div> <div id="header" class="row"> <img src="https://adsecurity.org/wp-content/themes/graphene/images/headers/fluid.jpg" alt="Active Directory Security" title="Active Directory Security" width="960" height="198" /> </div> <nav class="navbar row navbar-inverse"> <div class="navbar-header align-center"> <button type="button" class="navbar-toggle collapsed" data-toggle="collapse" data-target="#header-menu-wrap, #secondary-menu-wrap"> <span class="sr-only">Toggle navigation</span> <span class="icon-bar"></span> <span class="icon-bar"></span> <span class="icon-bar"></span> </button> <p class="header_title"> <a href="https://adsecurity.org" title="Go back to the front page"> Active Directory Security </a> </p> <p class="header_desc">Active Directory & Enterprise Security, Methods to Secure Active Directory, Attack Methods & Effective Defenses, PowerShell, Tech Notes, & Geek Trivia…</p> </div> <div class="collapse navbar-collapse" id="header-menu-wrap"> <ul class="nav navbar-nav flip"><li ><a href="https://adsecurity.org/">Home</a></li><li class="menu-item menu-item-8"><a href="https://adsecurity.org/?page_id=8" >About</a></li><li class="menu-item menu-item-41"><a href="https://adsecurity.org/?page_id=41" >AD Resources</a></li><li class="menu-item menu-item-4031"><a href="https://adsecurity.org/?page_id=4031" >Attack Defense & Detection</a></li><li class="menu-item menu-item-293"><a href="https://adsecurity.org/?page_id=293" >Contact</a></li><li class="menu-item menu-item-1821"><a href="https://adsecurity.org/?page_id=1821" >Mimikatz</a></li><li class="menu-item menu-item-1352"><a href="https://adsecurity.org/?page_id=1352" >Presentations</a></li><li class="menu-item menu-item-195"><a href="https://adsecurity.org/?page_id=195" >Schema Versions</a></li><li class="menu-item menu-item-399"><a href="https://adsecurity.org/?page_id=399" >Security Resources</a></li><li class="menu-item menu-item-183"><a href="https://adsecurity.org/?page_id=183" >SPNs</a></li><li class="menu-item menu-item-2532"><a href="https://adsecurity.org/?page_id=2532" >Top Posts</a></li></ul> </div> </nav> <div id="content" class="clearfix hfeed row"> <div id="content-main" class="clearfix content-main col-md-8"> <h1 class="page-title archive-title"> Tag: <span>Windows10</span> </h1> <div class="entries-wrapper"> <div id="post-2921" class="clearfix post post-2921 type-post status-publish format-standard has-post-thumbnail hentry category-microsoft-security category-powershell category-technical-reference tag-bypass-powershell-executionpolicy tag-bypass-powershell-security tag-constrained-language-mode tag-detect-invoke-mimikatz tag-detect-offensive-powershell tag-detect-powershell-attack-tools tag-detect-powershell-attacks tag-executionpolicybypass tag-invoke-expression tag-invoke-mimikatz tag-invokemimikatz tag-new-object-net-webclient-downloadstring tag-offensive-powershell tag-offensive-powershell-indicators tag-offensivepowershell tag-powershell-attack-tool tag-powershell-attack-tools tag-powershell-attacks tag-powershell-constrained-language tag-powershell-constrained-language-mode tag-powershell-execution-policy tag-powershell-gpo tag-powershell-logging-group-policy tag-powershell-mimikatz tag-powershell-exe tag-powershellattack tag-powershelllogging tag-powershellmafia tag-powershellsecurity tag-powershellv5 tag-powersploit tag-powerup tag-powerview tag-script-block-logging tag-system-wide-transcript tag-system-management-automation-dll tag-windows10 item-wrap"> <div class="entry clearfix"> <div class="post-date date alpha with-year"> <p class="default_date"> <span class="month">Aug</span> <span class="day">13</span> <span class="year">2016</span> </p> </div> <h2 class="post-title entry-title"> <a href="https://adsecurity.org/?p=2921" rel="bookmark" title="Permalink to PowerShell Security: PowerShell Attack Tools, Mitigation, & Detection"> PowerShell Security: PowerShell Attack Tools, Mitigation, & Detection </a> </h2> <ul class="post-meta entry-meta clearfix"> <li class="byline"> By <span class="author"><a href="https://adsecurity.org/?author=2" rel="author">Sean Metcalf</a></span><span class="entry-cat"> in <span class="terms"><a class="term term-category term-11" href="https://adsecurity.org/?cat=11">Microsoft Security</a>, <a class="term term-category term-7" href="https://adsecurity.org/?cat=7">PowerShell</a>, <a class="term term-category term-2" href="https://adsecurity.org/?cat=2">Technical Reference</a></span></span> </li> </ul> <div class="entry-content clearfix"> <p class="excerpt-thumb"> <a href="https://adsecurity.org/?p=2921" rel="bookmark" title="Permalink to PowerShell Security: PowerShell Attack Tools, Mitigation, & Detection"> <img width="300" height="209" src="https://adsecurity.org/wp-content/uploads/2016/08/PSAttack-InvokeMimikatz-300x209.png" class="attachment-medium size-medium wp-post-image" alt="" decoding="async" fetchpriority="high" srcset="https://adsecurity.org/wp-content/uploads/2016/08/PSAttack-InvokeMimikatz-300x209.png 300w, https://adsecurity.org/wp-content/uploads/2016/08/PSAttack-InvokeMimikatz-768x536.png 768w, https://adsecurity.org/wp-content/uploads/2016/08/PSAttack-InvokeMimikatz-1024x715.png 1024w, https://adsecurity.org/wp-content/uploads/2016/08/PSAttack-InvokeMimikatz-720x500.png 720w, https://adsecurity.org/wp-content/uploads/2016/08/PSAttack-InvokeMimikatz-1080x750.png 1080w, https://adsecurity.org/wp-content/uploads/2016/08/PSAttack-InvokeMimikatz.png 1807w" sizes="(max-width: 300px) 100vw, 300px" /> </a> </p> <p>This post is a follow-up of sorts from my earlier posts on PowerShell, my PowerShell presentation at BSides Baltimore, and my presentation at DEF CON 24. Hopefully this post provides current information on PowerShell usage for both Blue and Red teams. Related posts: BSides Charm Presentation Posted: PowerShell Security: Defending the Enterprise from the Latest … </p> <p><a class="more-link btn" href="https://adsecurity.org/?p=2921">Continue reading</a></p> </div> <ul class="entry-footer"> <li class="post-tags col-sm-8"><i class="fa fa-tags" title="Tags"></i> <span class="terms"><a class="term term-tagpost_tag term-873" href="https://adsecurity.org/?tag=bypass-powershell-executionpolicy">Bypass PowerShell ExecutionPolicy</a>, <a class="term term-tagpost_tag term-977" href="https://adsecurity.org/?tag=bypass-powershell-security">bypass PowerShell security</a>, <a class="term term-tagpost_tag term-998" href="https://adsecurity.org/?tag=constrained-language-mode">constrained language mode</a>, <a class="term term-tagpost_tag term-880" href="https://adsecurity.org/?tag=detect-invoke-mimikatz">Detect Invoke-Mimikatz</a>, <a class="term term-tagpost_tag term-881" href="https://adsecurity.org/?tag=detect-offensive-powershell">Detect offensive PowerShell</a>, <a class="term term-tagpost_tag term-882" href="https://adsecurity.org/?tag=detect-powershell-attack-tools">detect PowerShell attack tools</a>, <a class="term term-tagpost_tag term-996" href="https://adsecurity.org/?tag=detect-powershell-attacks">Detect PowerShell attacks</a>, <a class="term term-tagpost_tag term-874" href="https://adsecurity.org/?tag=executionpolicybypass">ExecutionPolicyBypass</a>, <a class="term term-tagpost_tag term-878" href="https://adsecurity.org/?tag=invoke-expression">Invoke-Expression</a>, <a class="term term-tagpost_tag term-336" href="https://adsecurity.org/?tag=invoke-mimikatz">Invoke-Mimikatz</a>, <a class="term term-tagpost_tag term-868" href="https://adsecurity.org/?tag=invokemimikatz">InvokeMimikatz</a>, <a class="term term-tagpost_tag term-879" href="https://adsecurity.org/?tag=new-object-net-webclient-downloadstring">New-Object Net.WebClient DownloadString</a>, <a class="term term-tagpost_tag term-866" href="https://adsecurity.org/?tag=offensive-powershell">Offensive PowerShell</a>, <a class="term term-tagpost_tag term-997" href="https://adsecurity.org/?tag=offensive-powershell-indicators">Offensive PowerShell indicators</a>, <a class="term term-tagpost_tag term-994" href="https://adsecurity.org/?tag=offensivepowershell">OffensivePowerShell</a>, <a class="term term-tagpost_tag term-871" href="https://adsecurity.org/?tag=powershell-attack-tool">PowerShell Attack Tool</a>, <a class="term term-tagpost_tag term-995" href="https://adsecurity.org/?tag=powershell-attack-tools">PowerShell attack tools</a>, <a class="term term-tagpost_tag term-865" href="https://adsecurity.org/?tag=powershell-attacks">PowerShell Attacks</a>, <a class="term term-tagpost_tag term-999" href="https://adsecurity.org/?tag=powershell-constrained-language">PowerShell constrained language</a>, <a class="term term-tagpost_tag term-875" href="https://adsecurity.org/?tag=powershell-constrained-language-mode">PowerShell Constrained Language Mode</a>, <a class="term term-tagpost_tag term-872" href="https://adsecurity.org/?tag=powershell-execution-policy">PowerShell Execution Policy</a>, <a class="term term-tagpost_tag term-877" href="https://adsecurity.org/?tag=powershell-gpo">PowerShell GPO</a>, <a class="term term-tagpost_tag term-876" href="https://adsecurity.org/?tag=powershell-logging-group-policy">PowerShell Logging Group Policy</a>, <a class="term term-tagpost_tag term-869" href="https://adsecurity.org/?tag=powershell-mimikatz">PowerShell Mimikatz</a>, <a class="term term-tagpost_tag term-864" href="https://adsecurity.org/?tag=powershell-exe">PowerShell.exe</a>, <a class="term term-tagpost_tag term-143" href="https://adsecurity.org/?tag=powershellattack">PowerShellAttack</a>, <a class="term term-tagpost_tag term-863" href="https://adsecurity.org/?tag=powershelllogging">PowershellLogging</a>, <a class="term term-tagpost_tag term-867" href="https://adsecurity.org/?tag=powershellmafia">PowerShellMafia</a>, <a class="term term-tagpost_tag term-788" href="https://adsecurity.org/?tag=powershellsecurity">PowerShellSecurity</a>, <a class="term term-tagpost_tag term-69" href="https://adsecurity.org/?tag=powershellv5">PowerShellv5</a>, <a class="term term-tagpost_tag term-232" href="https://adsecurity.org/?tag=powersploit">PowerSploit</a>, <a class="term term-tagpost_tag term-965" href="https://adsecurity.org/?tag=powerup">PowerUp</a>, <a class="term term-tagpost_tag term-696" href="https://adsecurity.org/?tag=powerview">PowerView</a>, <a class="term term-tagpost_tag term-862" href="https://adsecurity.org/?tag=script-block-logging">script block logging</a>, <a class="term term-tagpost_tag term-858" href="https://adsecurity.org/?tag=system-wide-transcript">System-wide transcript</a>, <a class="term term-tagpost_tag term-870" href="https://adsecurity.org/?tag=system-management-automation-dll">System.Management.Automation.dll</a>, <a class="term term-tagpost_tag term-494" href="https://adsecurity.org/?tag=windows10">Windows10</a></span></li> <li class="comment-link col-sm-4"><i class="fa fa-comments"></i> <a href="https://adsecurity.org/?p=2921#comments">2 comments</a></li> </ul> </div> </div> <div id="post-2604" class="clearfix post post-2604 type-post status-publish format-standard hentry category-activedirectorysecurity category-malware category-microsoft-security category-powershell category-technical-reference tag-bypass-powershell-executionpolicy tag-detect-invoke-mimikatz tag-detect-offensive-powershell tag-detect-powershell-attack-tools tag-executionpolicybypass tag-invoke-expression tag-invoke-mimikatz tag-invokemimikatz tag-new-object-net-webclient-downloadstring tag-offensive-powershell tag-powershell-attack-tool tag-powershell-attacks tag-powershell-constrained-language-mode tag-powershell-execution-policy tag-powershell-gpo tag-powershell-logging-group-policy tag-powershell-mimikatz tag-powershell-exe tag-powershelllogging tag-powershellmafia tag-powershellsecurity tag-powershellv5 tag-powersploit tag-script-block-logging tag-system-wide-transcript tag-system-management-automation-dll tag-windows10 item-wrap"> <div class="entry clearfix"> <div class="post-date date alpha with-year"> <p class="default_date"> <span class="month">Feb</span> <span class="day">11</span> <span class="year">2016</span> </p> </div> <h2 class="post-title entry-title"> <a href="https://adsecurity.org/?p=2604" rel="bookmark" title="Permalink to Detecting Offensive PowerShell Attack Tools"> Detecting Offensive PowerShell Attack Tools </a> </h2> <ul class="post-meta entry-meta clearfix"> <li class="byline"> By <span class="author"><a href="https://adsecurity.org/?author=2" rel="author">Sean Metcalf</a></span><span class="entry-cat"> in <span class="terms"><a class="term term-category term-565" href="https://adsecurity.org/?cat=565">ActiveDirectorySecurity</a>, <a class="term term-category term-343" href="https://adsecurity.org/?cat=343">Malware</a>, <a class="term term-category term-11" href="https://adsecurity.org/?cat=11">Microsoft Security</a>, <a class="term term-category term-7" href="https://adsecurity.org/?cat=7">PowerShell</a>, <a class="term term-category term-2" href="https://adsecurity.org/?cat=2">Technical Reference</a></span></span> </li> </ul> <div class="entry-content clearfix"> <div class="excerpt-thumb"><a href="https://adsecurity.org/?p=2604"><img width="278" height="300" src="https://adsecurity.org/wp-content/uploads/2016/02/Detecting-PowerShell-Attack-Tools-InvokeMimikatz-TOKEN_PRIVILEGES-EventID-4103-278x300.jpg" class="attachment-medium size-medium" alt="" decoding="async" srcset="https://adsecurity.org/wp-content/uploads/2016/02/Detecting-PowerShell-Attack-Tools-InvokeMimikatz-TOKEN_PRIVILEGES-EventID-4103-278x300.jpg 278w, https://adsecurity.org/wp-content/uploads/2016/02/Detecting-PowerShell-Attack-Tools-InvokeMimikatz-TOKEN_PRIVILEGES-EventID-4103.jpg 553w" sizes="(max-width: 278px) 100vw, 278px" /></a></div> <p>At DerbyCon V (2015), I presented on Active Directory Attack & Defense and part of this included how to detect & defend against PowerShell attacks. Update: I presented at BSides Charm (Baltimore) on PowerShell attack & defense in April 2016. More information on PowerShell Security: PowerShell Security: PowerShell Attack Tools, Mitigation, & Detection The most … </p> <p><a class="more-link btn" href="https://adsecurity.org/?p=2604">Continue reading</a></p> </div> <ul class="entry-footer"> <li class="post-tags col-sm-8"><i class="fa fa-tags" title="Tags"></i> <span class="terms"><a class="term term-tagpost_tag term-873" href="https://adsecurity.org/?tag=bypass-powershell-executionpolicy">Bypass PowerShell ExecutionPolicy</a>, <a class="term term-tagpost_tag term-880" href="https://adsecurity.org/?tag=detect-invoke-mimikatz">Detect Invoke-Mimikatz</a>, <a class="term term-tagpost_tag term-881" href="https://adsecurity.org/?tag=detect-offensive-powershell">Detect offensive PowerShell</a>, <a class="term term-tagpost_tag term-882" href="https://adsecurity.org/?tag=detect-powershell-attack-tools">detect PowerShell attack tools</a>, <a class="term term-tagpost_tag term-874" href="https://adsecurity.org/?tag=executionpolicybypass">ExecutionPolicyBypass</a>, <a class="term term-tagpost_tag term-878" href="https://adsecurity.org/?tag=invoke-expression">Invoke-Expression</a>, <a class="term term-tagpost_tag term-336" href="https://adsecurity.org/?tag=invoke-mimikatz">Invoke-Mimikatz</a>, <a class="term term-tagpost_tag term-868" href="https://adsecurity.org/?tag=invokemimikatz">InvokeMimikatz</a>, <a class="term term-tagpost_tag term-879" href="https://adsecurity.org/?tag=new-object-net-webclient-downloadstring">New-Object Net.WebClient DownloadString</a>, <a class="term term-tagpost_tag term-866" href="https://adsecurity.org/?tag=offensive-powershell">Offensive PowerShell</a>, <a class="term term-tagpost_tag term-871" href="https://adsecurity.org/?tag=powershell-attack-tool">PowerShell Attack Tool</a>, <a class="term term-tagpost_tag term-865" href="https://adsecurity.org/?tag=powershell-attacks">PowerShell Attacks</a>, <a class="term term-tagpost_tag term-875" href="https://adsecurity.org/?tag=powershell-constrained-language-mode">PowerShell Constrained Language Mode</a>, <a class="term term-tagpost_tag term-872" href="https://adsecurity.org/?tag=powershell-execution-policy">PowerShell Execution Policy</a>, <a class="term term-tagpost_tag term-877" href="https://adsecurity.org/?tag=powershell-gpo">PowerShell GPO</a>, <a class="term term-tagpost_tag term-876" href="https://adsecurity.org/?tag=powershell-logging-group-policy">PowerShell Logging Group Policy</a>, <a class="term term-tagpost_tag term-869" href="https://adsecurity.org/?tag=powershell-mimikatz">PowerShell Mimikatz</a>, <a class="term term-tagpost_tag term-864" href="https://adsecurity.org/?tag=powershell-exe">PowerShell.exe</a>, <a class="term term-tagpost_tag term-863" href="https://adsecurity.org/?tag=powershelllogging">PowershellLogging</a>, <a class="term term-tagpost_tag term-867" href="https://adsecurity.org/?tag=powershellmafia">PowerShellMafia</a>, <a class="term term-tagpost_tag term-788" href="https://adsecurity.org/?tag=powershellsecurity">PowerShellSecurity</a>, <a class="term term-tagpost_tag term-69" href="https://adsecurity.org/?tag=powershellv5">PowerShellv5</a>, <a class="term term-tagpost_tag term-232" href="https://adsecurity.org/?tag=powersploit">PowerSploit</a>, <a class="term term-tagpost_tag term-862" href="https://adsecurity.org/?tag=script-block-logging">script block logging</a>, <a class="term term-tagpost_tag term-858" href="https://adsecurity.org/?tag=system-wide-transcript">System-wide transcript</a>, <a class="term term-tagpost_tag term-870" href="https://adsecurity.org/?tag=system-management-automation-dll">System.Management.Automation.dll</a>, <a class="term term-tagpost_tag term-494" href="https://adsecurity.org/?tag=windows10">Windows10</a></span></li> </ul> </div> </div> <div id="post-2277" class="clearfix post post-2277 type-post status-publish format-standard hentry category-microsoft-security category-powershell category-technical-reference tag-amsi tag-powershell-antimalware-intgration tag-powershellsecurity tag-powershellv5 tag-script-block-logging tag-system-wide-transcript tag-windows10 item-wrap"> <div class="entry clearfix"> <div class="post-date date alpha with-year"> <p class="default_date"> <span class="month">Feb</span> <span class="day">11</span> <span class="year">2016</span> </p> </div> <h2 class="post-title entry-title"> <a href="https://adsecurity.org/?p=2277" rel="bookmark" title="Permalink to PowerShell Version 5 Security Enhancements"> PowerShell Version 5 Security Enhancements </a> </h2> <ul class="post-meta entry-meta clearfix"> <li class="byline"> By <span class="author"><a href="https://adsecurity.org/?author=2" rel="author">Sean Metcalf</a></span><span class="entry-cat"> in <span class="terms"><a class="term term-category term-11" href="https://adsecurity.org/?cat=11">Microsoft Security</a>, <a class="term term-category term-7" href="https://adsecurity.org/?cat=7">PowerShell</a>, <a class="term term-category term-2" href="https://adsecurity.org/?cat=2">Technical Reference</a></span></span> </li> </ul> <div class="entry-content clearfix"> <div class="excerpt-thumb"><a href="https://adsecurity.org/?p=2277"><img width="300" height="244" src="https://adsecurity.org/wp-content/uploads/2016/01/PowerShellv5-Security-ScriptBlockLogging-System-Wide-Transcripts-300x244.png" class="attachment-medium size-medium" alt="" decoding="async" srcset="https://adsecurity.org/wp-content/uploads/2016/01/PowerShellv5-Security-ScriptBlockLogging-System-Wide-Transcripts-300x244.png 300w, https://adsecurity.org/wp-content/uploads/2016/01/PowerShellv5-Security-ScriptBlockLogging-System-Wide-Transcripts-768x623.png 768w, https://adsecurity.org/wp-content/uploads/2016/01/PowerShellv5-Security-ScriptBlockLogging-System-Wide-Transcripts.png 770w" sizes="(max-width: 300px) 100vw, 300px" /></a></div> <p>PowerShell version 5 is RTM (As of 12/18/2015). Prior to this there was a “production preview” available since August which means it was supported, but not final. With the final release of PowerShell v5 now available, I highly recommend you download PowerShell v5 and start testing to prepare for production deployment. While the PowerShell v5 … </p> <p><a class="more-link btn" href="https://adsecurity.org/?p=2277">Continue reading</a></p> </div> <ul class="entry-footer"> <li class="post-tags col-sm-8"><i class="fa fa-tags" title="Tags"></i> <span class="terms"><a class="term term-tagpost_tag term-860" href="https://adsecurity.org/?tag=amsi">AMSI</a>, <a class="term term-tagpost_tag term-861" href="https://adsecurity.org/?tag=powershell-antimalware-intgration">PowerShell Antimalware Intgration</a>, <a class="term term-tagpost_tag term-788" href="https://adsecurity.org/?tag=powershellsecurity">PowerShellSecurity</a>, <a class="term term-tagpost_tag term-69" href="https://adsecurity.org/?tag=powershellv5">PowerShellv5</a>, <a class="term term-tagpost_tag term-862" href="https://adsecurity.org/?tag=script-block-logging">script block logging</a>, <a class="term term-tagpost_tag term-858" href="https://adsecurity.org/?tag=system-wide-transcript">System-wide transcript</a>, <a class="term term-tagpost_tag term-494" href="https://adsecurity.org/?tag=windows10">Windows10</a></span></li> </ul> </div> </div> <div id="post-2579" class="clearfix post post-2579 type-post status-publish format-standard hentry category-microsoft-security category-mitigation tag-aslr tag-blocking-untrusted-fonts-feature tag-bottom-up-aslr tag-caller-checks tag-certtrust-xml tag-dep tag-eaf tag-eafeaf tag-eafeaf-perf-improvements tag-emet tag-emet-event-logging tag-emet5-5 tag-emet55 tag-emetwindows10 tag-emet_conf tag-enhanced-mitigation-experience-toolkit tag-enhanced-mitigation-experience-toolkit-emet-5-5-beta-user-guide tag-enhancedmitigationexperiencetoolkit tag-export-address-table-access-filtering-eaf tag-export-address-table-access-filtering-plus-eaf tag-heap-spray tag-hideemet tag-hideemeticon tag-load-library tag-mandatory-aslr tag-memory-protection tag-microsoft-emet-service tag-microsoftemet tag-microsoftemet5-5 tag-null-page tag-popular-software-xml tag-recommended-software-xml tag-sehop tag-simulate-executionflow tag-stack-pivot tag-untrusted-font-mitigation tag-untrusted-fonts tag-windows10 tag-softwarepoliciesmicrosoftemet item-wrap"> <div class="entry clearfix"> <div class="post-date date alpha with-year"> <p class="default_date"> <span class="month">Jan</span> <span class="day">31</span> <span class="year">2016</span> </p> </div> <h2 class="post-title entry-title"> <a href="https://adsecurity.org/?p=2579" rel="bookmark" title="Permalink to Microsoft EMET 5.5 Released – Benefits, New Features, Protection, Logging, & GPO Config"> Microsoft EMET 5.5 Released – Benefits, New Features, Protection, Logging, & GPO Config </a> </h2> <ul class="post-meta entry-meta clearfix"> <li class="byline"> By <span class="author"><a href="https://adsecurity.org/?author=2" rel="author">Sean Metcalf</a></span><span class="entry-cat"> in <span class="terms"><a class="term term-category term-11" href="https://adsecurity.org/?cat=11">Microsoft Security</a>, <a class="term term-category term-819" href="https://adsecurity.org/?cat=819">Mitigation</a></span></span> </li> </ul> <div class="entry-content clearfix"> <div class="excerpt-thumb"><a href="https://adsecurity.org/?p=2579"><img width="300" height="273" src="https://adsecurity.org/wp-content/uploads/2016/01/EMET-5.5-Mitigation-OSCompatibility-300x273.jpg" class="attachment-medium size-medium" alt="" decoding="async" loading="lazy" srcset="https://adsecurity.org/wp-content/uploads/2016/01/EMET-5.5-Mitigation-OSCompatibility-300x273.jpg 300w, https://adsecurity.org/wp-content/uploads/2016/01/EMET-5.5-Mitigation-OSCompatibility-768x700.jpg 768w, https://adsecurity.org/wp-content/uploads/2016/01/EMET-5.5-Mitigation-OSCompatibility-1024x933.jpg 1024w, https://adsecurity.org/wp-content/uploads/2016/01/EMET-5.5-Mitigation-OSCompatibility.jpg 1420w" sizes="(max-width: 300px) 100vw, 300px" /></a></div> <p>Microsoft recently released Enhanced Mitigation Experience Toolkit (EMET) version 5.5 (it jumped from 5.2 to 5.5) which includes Windows 10 compatibility and better GPO support (among others). I’ve included information from a variety of Microsoft sources in this post so that others don’t have to search for the data separately. The resources/references are listed at … </p> <p><a class="more-link btn" href="https://adsecurity.org/?p=2579">Continue reading</a></p> </div> <ul class="entry-footer"> <li class="post-tags col-sm-8"><i class="fa fa-tags" title="Tags"></i> <span class="terms"><a class="term term-tagpost_tag term-145" href="https://adsecurity.org/?tag=aslr">ASLR</a>, <a class="term term-tagpost_tag term-834" href="https://adsecurity.org/?tag=blocking-untrusted-fonts-feature">Blocking Untrusted Fonts feature</a>, <a class="term term-tagpost_tag term-845" href="https://adsecurity.org/?tag=bottom-up-aslr">Bottom-up ASLR</a>, <a class="term term-tagpost_tag term-850" href="https://adsecurity.org/?tag=caller-checks">caller checks</a>, <a class="term term-tagpost_tag term-829" href="https://adsecurity.org/?tag=certtrust-xml">CertTrust.xml</a>, <a class="term term-tagpost_tag term-146" href="https://adsecurity.org/?tag=dep">DEP</a>, <a class="term term-tagpost_tag term-832" href="https://adsecurity.org/?tag=eaf">EAF</a>, <a class="term term-tagpost_tag term-822" href="https://adsecurity.org/?tag=eafeaf">EAF/EAF+</a>, <a class="term term-tagpost_tag term-838" href="https://adsecurity.org/?tag=eafeaf-perf-improvements">EAF/EAF+ perf improvements</a>, <a class="term term-tagpost_tag term-260" href="https://adsecurity.org/?tag=emet">EMET</a>, <a class="term term-tagpost_tag term-841" href="https://adsecurity.org/?tag=emet-event-logging">EMET Event Logging</a>, <a class="term term-tagpost_tag term-821" href="https://adsecurity.org/?tag=emet5-5">EMET5.5</a>, <a class="term term-tagpost_tag term-825" href="https://adsecurity.org/?tag=emet55">EMET55</a>, <a class="term term-tagpost_tag term-826" href="https://adsecurity.org/?tag=emetwindows10">EMETWindows10</a>, <a class="term term-tagpost_tag term-835" href="https://adsecurity.org/?tag=emet_conf">EMET_Conf</a>, <a class="term term-tagpost_tag term-830" href="https://adsecurity.org/?tag=enhanced-mitigation-experience-toolkit">Enhanced Mitigation Experience Toolkit</a>, <a class="term term-tagpost_tag term-831" href="https://adsecurity.org/?tag=enhanced-mitigation-experience-toolkit-emet-5-5-beta-user-guide">Enhanced Mitigation Experience Toolkit (EMET) 5.5 Beta User Guide</a>, <a class="term term-tagpost_tag term-820" href="https://adsecurity.org/?tag=enhancedmitigationexperiencetoolkit">EnhancedMitigationExperienceToolkit</a>, <a class="term term-tagpost_tag term-837" href="https://adsecurity.org/?tag=export-address-table-access-filtering-eaf">Export Address Table Access Filtering (EAF)</a>, <a class="term term-tagpost_tag term-839" href="https://adsecurity.org/?tag=export-address-table-access-filtering-plus-eaf">Export Address Table Access Filtering Plus (EAF+)</a>, <a class="term term-tagpost_tag term-843" href="https://adsecurity.org/?tag=heap-spray">Heap Spray</a>, <a class="term term-tagpost_tag term-853" href="https://adsecurity.org/?tag=hideemet">HideEMET</a>, <a class="term term-tagpost_tag term-852" href="https://adsecurity.org/?tag=hideemeticon">HideEMETIcon</a>, <a class="term term-tagpost_tag term-846" href="https://adsecurity.org/?tag=load-library">Load Library</a>, <a class="term term-tagpost_tag term-844" href="https://adsecurity.org/?tag=mandatory-aslr">Mandatory ASLR</a>, <a class="term term-tagpost_tag term-847" href="https://adsecurity.org/?tag=memory-protection">Memory PRotection</a>, <a class="term term-tagpost_tag term-840" href="https://adsecurity.org/?tag=microsoft-emet-service">Microsoft EMET Service</a>, <a class="term term-tagpost_tag term-58" href="https://adsecurity.org/?tag=microsoftemet">MicrosoftEMET</a>, <a class="term term-tagpost_tag term-824" href="https://adsecurity.org/?tag=microsoftemet5-5">MicrosoftEMET5.5</a>, <a class="term term-tagpost_tag term-842" href="https://adsecurity.org/?tag=null-page">NULL Page</a>, <a class="term term-tagpost_tag term-827" href="https://adsecurity.org/?tag=popular-software-xml">Popular Software.xml</a>, <a class="term term-tagpost_tag term-828" href="https://adsecurity.org/?tag=recommended-software-xml">Recommended Software.xml</a>, <a class="term term-tagpost_tag term-833" href="https://adsecurity.org/?tag=sehop">SEHOP</a>, <a class="term term-tagpost_tag term-848" href="https://adsecurity.org/?tag=simulate-executionflow">Simulate executionflow</a>, <a class="term term-tagpost_tag term-849" href="https://adsecurity.org/?tag=stack-pivot">stack pivot</a>, <a class="term term-tagpost_tag term-823" href="https://adsecurity.org/?tag=untrusted-font-mitigation">Untrusted font mitigation</a>, <a class="term term-tagpost_tag term-851" href="https://adsecurity.org/?tag=untrusted-fonts">untrusted fonts</a>, <a class="term term-tagpost_tag term-494" href="https://adsecurity.org/?tag=windows10">Windows10</a>, <a class="term term-tagpost_tag term-836" href="https://adsecurity.org/?tag=softwarepoliciesmicrosoftemet">\SOFTWARE\Policies\Microsoft\EMET</a></span></li> </ul> </div> </div> <div id="post-1632" class="clearfix post post-1632 type-post status-publish format-standard hentry category-microsoft-security category-security-conference-presentationvideo tag-activedirectoryattack tag-activedirectorycompromise tag-activedirectorydefense tag-adpersistence tag-advancedpersistence tag-credentialtheft tag-defcon tag-defcon2015 tag-defcon23 tag-empire tag-forgedkerberos tag-goldenticket tag-ium tag-kerberoshacking tag-kerberosticket tag-overpassthehash tag-powershellempire tag-powersploit tag-redvsblue tag-sidhistory tag-silverticket tag-trustticket tag-vsm tag-windows10 tag-wmi item-wrap"> <div class="entry clearfix"> <div class="post-date date alpha with-year"> <p class="default_date"> <span class="month">Aug</span> <span class="day">02</span> <span class="year">2015</span> </p> </div> <h2 class="post-title entry-title"> <a href="https://adsecurity.org/?p=1632" rel="bookmark" title="Permalink to DEF CON 23 (2015) Red vs Blue: Modern Active Directory Attacks & Defense Talk Detail"> DEF CON 23 (2015) Red vs Blue: Modern Active Directory Attacks & Defense Talk Detail </a> </h2> <ul class="post-meta entry-meta clearfix"> <li class="byline"> By <span class="author"><a href="https://adsecurity.org/?author=2" rel="author">Sean Metcalf</a></span><span class="entry-cat"> in <span class="terms"><a class="term term-category term-11" href="https://adsecurity.org/?cat=11">Microsoft Security</a>, <a class="term term-category term-234" href="https://adsecurity.org/?cat=234">Security Conference Presentation/Video</a></span></span> </li> </ul> <div class="entry-content clearfix"> <p>This week at DEF CON 23, I will be speaking about Active Directory attack & defense in my talk “Red vs Blue: Modern Active Directory Attacks & Defense”. This is the 4th iteration of this talk and includes the latest updates to attack methods and defensive strategies.This DEF CON version has a new segment I … </p> <p><a class="more-link btn" href="https://adsecurity.org/?p=1632">Continue reading</a></p> </div> <ul class="entry-footer"> <li class="post-tags col-sm-8"><i class="fa fa-tags" title="Tags"></i> <span class="terms"><a class="term term-tagpost_tag term-537" href="https://adsecurity.org/?tag=activedirectoryattack">ActiveDirectoryAttack</a>, <a class="term term-tagpost_tag term-541" href="https://adsecurity.org/?tag=activedirectorycompromise">ActiveDirectoryCompromise</a>, <a class="term term-tagpost_tag term-538" href="https://adsecurity.org/?tag=activedirectorydefense">ActiveDirectoryDefense</a>, <a class="term term-tagpost_tag term-544" href="https://adsecurity.org/?tag=adpersistence">ADPersistence</a>, <a class="term term-tagpost_tag term-545" href="https://adsecurity.org/?tag=advancedpersistence">AdvancedPersistence</a>, <a class="term term-tagpost_tag term-540" href="https://adsecurity.org/?tag=credentialtheft">CredentialTheft</a>, <a class="term term-tagpost_tag term-518" href="https://adsecurity.org/?tag=defcon">DEFCON</a>, <a class="term term-tagpost_tag term-543" href="https://adsecurity.org/?tag=defcon2015">DEFCON2015</a>, <a class="term term-tagpost_tag term-542" href="https://adsecurity.org/?tag=defcon23">DEFCON23</a>, <a class="term term-tagpost_tag term-549" href="https://adsecurity.org/?tag=empire">Empire</a>, <a class="term term-tagpost_tag term-539" href="https://adsecurity.org/?tag=forgedkerberos">ForgedKerberos</a>, <a class="term term-tagpost_tag term-303" href="https://adsecurity.org/?tag=goldenticket">GoldenTicket</a>, <a class="term term-tagpost_tag term-500" href="https://adsecurity.org/?tag=ium">IUM</a>, <a class="term term-tagpost_tag term-298" href="https://adsecurity.org/?tag=kerberoshacking">KerberosHacking</a>, <a class="term term-tagpost_tag term-516" href="https://adsecurity.org/?tag=kerberosticket">KerberosTicket</a>, <a class="term term-tagpost_tag term-317" href="https://adsecurity.org/?tag=overpassthehash">OverPassTheHash</a>, <a class="term term-tagpost_tag term-548" href="https://adsecurity.org/?tag=powershellempire">PowerShellEmpire</a>, <a class="term term-tagpost_tag term-232" href="https://adsecurity.org/?tag=powersploit">PowerSploit</a>, <a class="term term-tagpost_tag term-470" href="https://adsecurity.org/?tag=redvsblue">RedVsBlue</a>, <a class="term term-tagpost_tag term-547" href="https://adsecurity.org/?tag=sidhistory">SIDHistory</a>, <a class="term term-tagpost_tag term-304" href="https://adsecurity.org/?tag=silverticket">SilverTicket</a>, <a class="term term-tagpost_tag term-534" href="https://adsecurity.org/?tag=trustticket">TrustTicket</a>, <a class="term term-tagpost_tag term-492" href="https://adsecurity.org/?tag=vsm">VSM</a>, <a class="term term-tagpost_tag term-494" href="https://adsecurity.org/?tag=windows10">Windows10</a>, <a class="term term-tagpost_tag term-546" href="https://adsecurity.org/?tag=wmi">WMI</a></span></li> </ul> </div> </div> <div id="post-1612" class="clearfix post post-1612 type-post status-publish format-standard hentry category-microsoft-security category-security-conference-presentationvideo tag-activedirectoryattack tag-activedirectorycompromise tag-activedirectorydefense tag-blackhat tag-blackhatusa2015 tag-credentialtheft tag-forgedkerberos tag-goldenticket tag-ium tag-kerberoshacking tag-kerberosticket tag-overpassthehash tag-redvsblue tag-silverticket tag-trustticket tag-vsm tag-windows10 item-wrap"> <div class="entry clearfix"> <div class="post-date date alpha with-year"> <p class="default_date"> <span class="month">Jul</span> <span class="day">26</span> <span class="year">2015</span> </p> </div> <h2 class="post-title entry-title"> <a href="https://adsecurity.org/?p=1612" rel="bookmark" title="Permalink to Black Hat USA 2015 Red vs Blue Active Directory Attack & Defense Talk Detail"> Black Hat USA 2015 Red vs Blue Active Directory Attack & Defense Talk Detail </a> </h2> <ul class="post-meta entry-meta clearfix"> <li class="byline"> By <span class="author"><a href="https://adsecurity.org/?author=2" rel="author">Sean Metcalf</a></span><span class="entry-cat"> in <span class="terms"><a class="term term-category term-11" href="https://adsecurity.org/?cat=11">Microsoft Security</a>, <a class="term term-category term-234" href="https://adsecurity.org/?cat=234">Security Conference Presentation/Video</a></span></span> </li> </ul> <div class="entry-content clearfix"> <div class="excerpt-thumb"><a href="https://adsecurity.org/?p=1612"><img width="300" height="250" src="https://adsecurity.org/wp-content/uploads/2015/07/ADSec_bh15usa_300x250_speaker-300x250.png" class="attachment-medium size-medium" alt="" decoding="async" loading="lazy" /></a></div> <p>Next week at Black Hat USA 2015, I will be speaking about Active Directory attack & defense in my talk “Red vs Blue: Modern Active Directory Attacks Detection and Protection”. This is the 3rd iteration of this talk and includes the latest updates to attack methods and defensive strategies. I’m including lots of updates and … </p> <p><a class="more-link btn" href="https://adsecurity.org/?p=1612">Continue reading</a></p> </div> <ul class="entry-footer"> <li class="post-tags col-sm-8"><i class="fa fa-tags" title="Tags"></i> <span class="terms"><a class="term term-tagpost_tag term-537" href="https://adsecurity.org/?tag=activedirectoryattack">ActiveDirectoryAttack</a>, <a class="term term-tagpost_tag term-541" href="https://adsecurity.org/?tag=activedirectorycompromise">ActiveDirectoryCompromise</a>, <a class="term term-tagpost_tag term-538" href="https://adsecurity.org/?tag=activedirectorydefense">ActiveDirectoryDefense</a>, <a class="term term-tagpost_tag term-397" href="https://adsecurity.org/?tag=blackhat">BlackHat</a>, <a class="term term-tagpost_tag term-536" href="https://adsecurity.org/?tag=blackhatusa2015">BlackHatUSA2015</a>, <a class="term term-tagpost_tag term-540" href="https://adsecurity.org/?tag=credentialtheft">CredentialTheft</a>, <a class="term term-tagpost_tag term-539" href="https://adsecurity.org/?tag=forgedkerberos">ForgedKerberos</a>, <a class="term term-tagpost_tag term-303" href="https://adsecurity.org/?tag=goldenticket">GoldenTicket</a>, <a class="term term-tagpost_tag term-500" href="https://adsecurity.org/?tag=ium">IUM</a>, <a class="term term-tagpost_tag term-298" href="https://adsecurity.org/?tag=kerberoshacking">KerberosHacking</a>, <a class="term term-tagpost_tag term-516" href="https://adsecurity.org/?tag=kerberosticket">KerberosTicket</a>, <a class="term term-tagpost_tag term-317" href="https://adsecurity.org/?tag=overpassthehash">OverPassTheHash</a>, <a class="term term-tagpost_tag term-470" href="https://adsecurity.org/?tag=redvsblue">RedVsBlue</a>, <a class="term term-tagpost_tag term-304" href="https://adsecurity.org/?tag=silverticket">SilverTicket</a>, <a class="term term-tagpost_tag term-534" href="https://adsecurity.org/?tag=trustticket">TrustTicket</a>, <a class="term term-tagpost_tag term-492" href="https://adsecurity.org/?tag=vsm">VSM</a>, <a class="term term-tagpost_tag term-494" href="https://adsecurity.org/?tag=windows10">Windows10</a></span></li> <li class="comment-link col-sm-4"><i class="fa fa-comments"></i> <a href="https://adsecurity.org/?p=1612#comments">1 comments</a></li> </ul> </div> </div> <div id="post-1560" class="clearfix post post-1560 type-post status-publish format-standard hentry category-microsoft-security category-security-conference-presentationvideo tag-activedirectorysecurity tag-chicago tag-conferencesecuritysessions tag-microsoftignite tag-microsoftigniteconference2015 tag-mimikatz tag-securityvideo tag-windows10 tag-windows10security tag-windowssecurity item-wrap"> <div class="entry clearfix"> <div class="post-date date alpha with-year"> <p class="default_date"> <span class="month">May</span> <span class="day">08</span> <span class="year">2015</span> </p> </div> <h2 class="post-title entry-title"> <a href="https://adsecurity.org/?p=1560" rel="bookmark" title="Permalink to Microsoft Ignite 2015 Security Sessions"> Microsoft Ignite 2015 Security Sessions </a> </h2> <ul class="post-meta entry-meta clearfix"> <li class="byline"> By <span class="author"><a href="https://adsecurity.org/?author=2" rel="author">Sean Metcalf</a></span><span class="entry-cat"> in <span class="terms"><a class="term term-category term-11" href="https://adsecurity.org/?cat=11">Microsoft Security</a>, <a class="term term-category term-234" href="https://adsecurity.org/?cat=234">Security Conference Presentation/Video</a></span></span> </li> </ul> <div class="entry-content clearfix"> <p>Microsoft retired several conferences this year (TechEd, MEC, MMC, etc) and merged them into a single mega-conference called Microsoft Ignite 2015. About 23,000 people (~29k including all staff and support personnel) converged on the McCormick Place Conference Center in Chicago, IL during the week of May 4th (May the Fourth be With You!). I recently … </p> <p><a class="more-link btn" href="https://adsecurity.org/?p=1560">Continue reading</a></p> </div> <ul class="entry-footer"> <li class="post-tags col-sm-8"><i class="fa fa-tags" title="Tags"></i> <span class="terms"><a class="term term-tagpost_tag term-113" href="https://adsecurity.org/?tag=activedirectorysecurity">ActiveDirectorySecurity</a>, <a class="term term-tagpost_tag term-507" href="https://adsecurity.org/?tag=chicago">Chicago</a>, <a class="term term-tagpost_tag term-509" href="https://adsecurity.org/?tag=conferencesecuritysessions">ConferenceSecuritySessions</a>, <a class="term term-tagpost_tag term-505" href="https://adsecurity.org/?tag=microsoftignite">MicrosoftIgnite</a>, <a class="term term-tagpost_tag term-321" href="https://adsecurity.org/?tag=microsoftigniteconference2015">MicrosoftIgniteConference2015</a>, <a class="term term-tagpost_tag term-207" href="https://adsecurity.org/?tag=mimikatz">mimikatz</a>, <a class="term term-tagpost_tag term-508" href="https://adsecurity.org/?tag=securityvideo">SecurityVideo</a>, <a class="term term-tagpost_tag term-494" href="https://adsecurity.org/?tag=windows10">Windows10</a>, <a class="term term-tagpost_tag term-506" href="https://adsecurity.org/?tag=windows10security">Windows10Security</a>, <a class="term term-tagpost_tag term-204" href="https://adsecurity.org/?tag=windowssecurity">WindowsSecurity</a></span></li> </ul> </div> </div> <div id="post-1535" class="clearfix post post-1535 type-post status-publish format-standard hentry category-microsoft-security category-technical-reference tag-activedirectory tag-authentication tag-azureactivedirectory tag-highlevelos tag-hlos tag-isolatedusermode tag-ium tag-kerberos tag-lsalso tag-lsass tag-microsofthello tag-microsoftpassport tag-shieldedvms tag-skernel tag-smart tag-tpmv2 tag-virtualsecuremode tag-vsm tag-windows10 tag-windows10authentication tag-windowscredentialstorage tag-windowsserver2016 item-wrap"> <div class="entry clearfix"> <div class="post-date date alpha with-year"> <p class="default_date"> <span class="month">May</span> <span class="day">07</span> <span class="year">2015</span> </p> </div> <h2 class="post-title entry-title"> <a href="https://adsecurity.org/?p=1535" rel="bookmark" title="Permalink to Windows 10 Microsoft Passport (aka Microsoft Next Generation Credential) In Detail"> Windows 10 Microsoft Passport (aka Microsoft Next Generation Credential) In Detail </a> </h2> <ul class="post-meta entry-meta clearfix"> <li class="byline"> By <span class="author"><a href="https://adsecurity.org/?author=2" rel="author">Sean Metcalf</a></span><span class="entry-cat"> in <span class="terms"><a class="term term-category term-11" href="https://adsecurity.org/?cat=11">Microsoft Security</a>, <a class="term term-category term-2" href="https://adsecurity.org/?cat=2">Technical Reference</a></span></span> </li> </ul> <div class="entry-content clearfix"> <p>At the Microsoft Ignite conference this week, there are several sessions covering Windows 10 features. One of biggest changes in Windows 10 is the new credential management method and the related “Next Generation Credential”, now named Microsoft Passport. There hasn鈥檛 been much information on how the new credential system works, so I challenged myself to … </p> <p><a class="more-link btn" href="https://adsecurity.org/?p=1535">Continue reading</a></p> </div> <ul class="entry-footer"> <li class="post-tags col-sm-8"><i class="fa fa-tags" title="Tags"></i> <span class="terms"><a class="term term-tagpost_tag term-20" href="https://adsecurity.org/?tag=activedirectory">ActiveDirectory</a>, <a class="term term-tagpost_tag term-496" href="https://adsecurity.org/?tag=authentication">Authentication</a>, <a class="term term-tagpost_tag term-491" href="https://adsecurity.org/?tag=azureactivedirectory">AzureActiveDirectory</a>, <a class="term term-tagpost_tag term-502" href="https://adsecurity.org/?tag=highlevelos">HighLevelOS</a>, <a class="term term-tagpost_tag term-501" href="https://adsecurity.org/?tag=hlos">HLOS</a>, <a class="term term-tagpost_tag term-503" href="https://adsecurity.org/?tag=isolatedusermode">IsolatedUserMode</a>, <a class="term term-tagpost_tag term-500" href="https://adsecurity.org/?tag=ium">IUM</a>, <a class="term term-tagpost_tag term-81" href="https://adsecurity.org/?tag=kerberos">Kerberos</a>, <a class="term term-tagpost_tag term-497" href="https://adsecurity.org/?tag=lsalso">LSALSO</a>, <a class="term term-tagpost_tag term-71" href="https://adsecurity.org/?tag=lsass">LSASS</a>, <a class="term term-tagpost_tag term-489" href="https://adsecurity.org/?tag=microsofthello">MicrosoftHello</a>, <a class="term term-tagpost_tag term-487" href="https://adsecurity.org/?tag=microsoftpassport">MicrosoftPassport</a>, <a class="term term-tagpost_tag term-493" href="https://adsecurity.org/?tag=shieldedvms">ShieldedVMs</a>, <a class="term term-tagpost_tag term-498" href="https://adsecurity.org/?tag=skernel">SKERNEL</a>, <a class="term term-tagpost_tag term-499" href="https://adsecurity.org/?tag=smart">SMART</a>, <a class="term term-tagpost_tag term-490" href="https://adsecurity.org/?tag=tpmv2">TPMv2</a>, <a class="term term-tagpost_tag term-504" href="https://adsecurity.org/?tag=virtualsecuremode">VirtualSecureMode</a>, <a class="term term-tagpost_tag term-492" href="https://adsecurity.org/?tag=vsm">VSM</a>, <a class="term term-tagpost_tag term-494" href="https://adsecurity.org/?tag=windows10">Windows10</a>, <a class="term term-tagpost_tag term-488" href="https://adsecurity.org/?tag=windows10authentication">Windows10Authentication</a>, <a class="term term-tagpost_tag term-495" href="https://adsecurity.org/?tag=windowscredentialstorage">WindowsCredentialStorage</a>, <a class="term term-tagpost_tag term-483" href="https://adsecurity.org/?tag=windowsserver2016">WindowsServer2016</a></span></li> </ul> </div> </div> </div> </div> <div id="sidebar1" class="sidebar sidebar-right widget-area col-md-4"> <div id="recent-posts-4" class="sidebar-wrap widget_recent_entries"> <h3>Recent Posts</h3> <ul> <li> <a href="https://adsecurity.org/?p=4436">BSides Dublin – The Current State of Microsoft Identity Security: Common Security Issues and Misconfigurations – Sean Metcalf</a> </li> <li> <a href="https://adsecurity.org/?p=4434">DEFCON 2017: Transcript – Hacking the Cloud</a> </li> <li> <a href="https://adsecurity.org/?p=4432">Detecting the Elusive: Active Directory Threat Hunting</a> </li> <li> <a href="https://adsecurity.org/?p=4430">Detecting Kerberoasting Activity</a> </li> <li> <a href="https://adsecurity.org/?p=4428">Detecting Password Spraying with Security Event Auditing</a> </li> </ul> </div><div id="text-3" class="sidebar-wrap widget_text"><h3>Trimarc Active Directory Security Services</h3> <div class="textwidget">Have concerns about your Active Directory environment? Trimarc helps enterprises improve their security posture. <p> <a href="http://trimarcsecurity.com/security-services">Find out how...</a> TrimarcSecurity.com</div> </div><div id="widget_tptn_pop-4" class="sidebar-wrap tptn_posts_list_widget"><h3>Popular Posts</h3><div class="tptn_posts tptn_posts_widget tptn_posts_widget4"><ul><li><span class="tptn_after_thumb"><a href="https://adsecurity.org/?p=478" class="tptn_link"><span class="tptn_title">PowerShell Encoding & Decoding (Base64)</span></a></span></li><li><span class="tptn_after_thumb"><a href="https://adsecurity.org/?p=2362" class="tptn_link"><span class="tptn_title">Attack Methods for Gaining Domain Admin Rights in…</span></a></span></li><li><span class="tptn_after_thumb"><a href="https://adsecurity.org/?p=483" class="tptn_link"><span class="tptn_title">Kerberos & KRBTGT: Active Directory’s…</span></a></span></li><li><span class="tptn_after_thumb"><a href="https://adsecurity.org/?p=2288" class="tptn_link"><span class="tptn_title">Finding Passwords in SYSVOL & Exploiting Group…</span></a></span></li><li><span class="tptn_after_thumb"><a href="https://adsecurity.org/?p=3377" class="tptn_link"><span class="tptn_title">Securing Domain Controllers to Improve Active…</span></a></span></li><li><span class="tptn_after_thumb"><a href="https://adsecurity.org/?p=3299" class="tptn_link"><span class="tptn_title">Securing Windows Workstations: Developing a Secure Baseline</span></a></span></li><li><span class="tptn_after_thumb"><a href="https://adsecurity.org/?p=3458" class="tptn_link"><span class="tptn_title">Detecting Kerberoasting Activity</span></a></span></li><li><span class="tptn_after_thumb"><a href="https://adsecurity.org/?p=1729" class="tptn_link"><span class="tptn_title">Mimikatz DCSync Usage, Exploitation, and Detection</span></a></span></li><li><span class="tptn_after_thumb"><a href="https://adsecurity.org/?p=3658" class="tptn_link"><span class="tptn_title">Scanning for Active Directory Privileges &…</span></a></span></li><li><span class="tptn_after_thumb"><a href="https://adsecurity.org/?p=3164" class="tptn_link"><span class="tptn_title">Microsoft LAPS Security & Active Directory LAPS…</span></a></span></li></ul><div class="tptn_clear"></div></div></div><div id="categories-4" class="sidebar-wrap widget_categories"><h3>Categories</h3> <ul> <li class="cat-item cat-item-565"><a href="https://adsecurity.org/?cat=565">ActiveDirectorySecurity</a> </li> <li class="cat-item cat-item-55"><a href="https://adsecurity.org/?cat=55">Apple Security</a> </li> <li class="cat-item cat-item-431"><a href="https://adsecurity.org/?cat=431">Cloud Security</a> </li> <li class="cat-item cat-item-17"><a href="https://adsecurity.org/?cat=17">Continuing Education</a> </li> <li class="cat-item cat-item-396"><a href="https://adsecurity.org/?cat=396">Entertainment</a> </li> <li class="cat-item cat-item-347"><a href="https://adsecurity.org/?cat=347">Exploit</a> </li> <li class="cat-item cat-item-1039"><a href="https://adsecurity.org/?cat=1039">Hacking</a> </li> <li class="cat-item cat-item-168"><a href="https://adsecurity.org/?cat=168">Hardware Security</a> </li> <li class="cat-item cat-item-172"><a href="https://adsecurity.org/?cat=172">Hypervisor Security</a> </li> <li class="cat-item cat-item-126"><a href="https://adsecurity.org/?cat=126">Linux/Unix Security</a> </li> <li class="cat-item cat-item-343"><a href="https://adsecurity.org/?cat=343">Malware</a> </li> <li class="cat-item cat-item-11"><a href="https://adsecurity.org/?cat=11">Microsoft Security</a> </li> <li class="cat-item cat-item-819"><a href="https://adsecurity.org/?cat=819">Mitigation</a> </li> <li class="cat-item cat-item-48"><a href="https://adsecurity.org/?cat=48">Network/System Security</a> </li> <li class="cat-item cat-item-7"><a href="https://adsecurity.org/?cat=7">PowerShell</a> </li> <li class="cat-item cat-item-698"><a href="https://adsecurity.org/?cat=698">RealWorld</a> </li> <li class="cat-item cat-item-21"><a href="https://adsecurity.org/?cat=21">Security</a> </li> <li class="cat-item cat-item-234"><a href="https://adsecurity.org/?cat=234">Security Conference Presentation/Video</a> </li> <li class="cat-item cat-item-1045"><a href="https://adsecurity.org/?cat=1045">Security Recommendation</a> </li> <li class="cat-item cat-item-24"><a href="https://adsecurity.org/?cat=24">Technical Article</a> </li> <li class="cat-item cat-item-4"><a href="https://adsecurity.org/?cat=4">Technical Reading</a> </li> <li class="cat-item cat-item-2"><a href="https://adsecurity.org/?cat=2">Technical Reference</a> </li> <li class="cat-item cat-item-156"><a href="https://adsecurity.org/?cat=156">TheCloud</a> </li> <li class="cat-item cat-item-930"><a href="https://adsecurity.org/?cat=930">Vulnerability</a> </li> </ul> </div><div id="tag_cloud-3" class="sidebar-wrap widget_tag_cloud"><h3>Tags</h3><div class="tagcloud"><a href="https://adsecurity.org/?tag=activedirectory" class="tag-cloud-link tag-link-20 tag-link-position-1" style="font-size: 22pt;" aria-label="ActiveDirectory (55 items)">ActiveDirectory</a> <a href="https://adsecurity.org/?tag=active-directory" class="tag-cloud-link tag-link-75 tag-link-position-2" style="font-size: 10.453608247423pt;" aria-label="Active Directory (8 items)">Active Directory</a> <a href="https://adsecurity.org/?tag=active-directory-security" class="tag-cloud-link tag-link-976 tag-link-position-3" style="font-size: 9.7319587628866pt;" aria-label="Active Directory Security (7 items)">Active Directory Security</a> <a href="https://adsecurity.org/?tag=activedirectorysecurity" class="tag-cloud-link tag-link-113 tag-link-position-4" style="font-size: 13.773195876289pt;" aria-label="ActiveDirectorySecurity (14 items)">ActiveDirectorySecurity</a> <a href="https://adsecurity.org/?tag=adreading" class="tag-cloud-link tag-link-5 tag-link-position-5" style="font-size: 13.340206185567pt;" aria-label="ADReading (13 items)">ADReading</a> <a href="https://adsecurity.org/?tag=ad-security" class="tag-cloud-link tag-link-100 tag-link-position-6" style="font-size: 8pt;" aria-label="AD Security (5 items)">AD Security</a> <a href="https://adsecurity.org/?tag=adsecurity" class="tag-cloud-link tag-link-86 tag-link-position-7" style="font-size: 10.453608247423pt;" aria-label="ADSecurity (8 items)">ADSecurity</a> <a href="https://adsecurity.org/?tag=azure" class="tag-cloud-link tag-link-25 tag-link-position-8" style="font-size: 8pt;" aria-label="Azure (5 items)">Azure</a> <a href="https://adsecurity.org/?tag=azuread" class="tag-cloud-link tag-link-136 tag-link-position-9" style="font-size: 8pt;" aria-label="AzureAD (5 items)">AzureAD</a> <a href="https://adsecurity.org/?tag=dcsync" class="tag-cloud-link tag-link-598 tag-link-position-10" style="font-size: 10.453608247423pt;" aria-label="DCSync (8 items)">DCSync</a> <a href="https://adsecurity.org/?tag=domaincontroller" class="tag-cloud-link tag-link-101 tag-link-position-11" style="font-size: 15.216494845361pt;" aria-label="DomainController (18 items)">DomainController</a> <a href="https://adsecurity.org/?tag=goldenticket" class="tag-cloud-link tag-link-303 tag-link-position-12" style="font-size: 11.175257731959pt;" aria-label="GoldenTicket (9 items)">GoldenTicket</a> <a href="https://adsecurity.org/?tag=grouppolicy" class="tag-cloud-link tag-link-196 tag-link-position-13" style="font-size: 8pt;" aria-label="GroupPolicy (5 items)">GroupPolicy</a> <a href="https://adsecurity.org/?tag=hyperv" class="tag-cloud-link tag-link-3 tag-link-position-14" style="font-size: 8pt;" aria-label="HyperV (5 items)">HyperV</a> <a href="https://adsecurity.org/?tag=invoke-mimikatz" class="tag-cloud-link tag-link-336 tag-link-position-15" style="font-size: 10.453608247423pt;" aria-label="Invoke-Mimikatz (8 items)">Invoke-Mimikatz</a> <a href="https://adsecurity.org/?tag=kb3011780" class="tag-cloud-link tag-link-337 tag-link-position-16" style="font-size: 9.7319587628866pt;" aria-label="KB3011780 (7 items)">KB3011780</a> <a href="https://adsecurity.org/?tag=kdc" class="tag-cloud-link tag-link-80 tag-link-position-17" style="font-size: 8pt;" aria-label="KDC (5 items)">KDC</a> <a href="https://adsecurity.org/?tag=kerberos" class="tag-cloud-link tag-link-81 tag-link-position-18" style="font-size: 15.216494845361pt;" aria-label="Kerberos (18 items)">Kerberos</a> <a href="https://adsecurity.org/?tag=kerberoshacking" class="tag-cloud-link tag-link-298 tag-link-position-19" style="font-size: 11.752577319588pt;" aria-label="KerberosHacking (10 items)">KerberosHacking</a> <a href="https://adsecurity.org/?tag=krbtgt" class="tag-cloud-link tag-link-394 tag-link-position-20" style="font-size: 9.7319587628866pt;" aria-label="KRBTGT (7 items)">KRBTGT</a> <a href="https://adsecurity.org/?tag=laps" class="tag-cloud-link tag-link-631 tag-link-position-21" style="font-size: 9.0103092783505pt;" aria-label="LAPS (6 items)">LAPS</a> <a href="https://adsecurity.org/?tag=lsass" class="tag-cloud-link tag-link-71 tag-link-position-22" style="font-size: 11.175257731959pt;" aria-label="LSASS (9 items)">LSASS</a> <a href="https://adsecurity.org/?tag=mcm" class="tag-cloud-link tag-link-6 tag-link-position-23" style="font-size: 14.061855670103pt;" aria-label="MCM (15 items)">MCM</a> <a href="https://adsecurity.org/?tag=microsoftemet" class="tag-cloud-link tag-link-58 tag-link-position-24" style="font-size: 11.175257731959pt;" aria-label="MicrosoftEMET (9 items)">MicrosoftEMET</a> <a href="https://adsecurity.org/?tag=microsoftwindows" class="tag-cloud-link tag-link-102 tag-link-position-25" style="font-size: 9.7319587628866pt;" aria-label="MicrosoftWindows (7 items)">MicrosoftWindows</a> <a href="https://adsecurity.org/?tag=mimikatz" class="tag-cloud-link tag-link-207 tag-link-position-26" style="font-size: 18.103092783505pt;" aria-label="mimikatz (29 items)">mimikatz</a> <a href="https://adsecurity.org/?tag=ms14068" class="tag-cloud-link tag-link-295 tag-link-position-27" style="font-size: 11.175257731959pt;" aria-label="MS14068 (9 items)">MS14068</a> <a href="https://adsecurity.org/?tag=passthehash" class="tag-cloud-link tag-link-44 tag-link-position-28" style="font-size: 9.7319587628866pt;" aria-label="PassTheHash (7 items)">PassTheHash</a> <a href="https://adsecurity.org/?tag=powershell" class="tag-cloud-link tag-link-575 tag-link-position-29" style="font-size: 18.536082474227pt;" aria-label="PowerShell (31 items)">PowerShell</a> <a href="https://adsecurity.org/?tag=powershellcode" class="tag-cloud-link tag-link-22 tag-link-position-30" style="font-size: 14.927835051546pt;" aria-label="PowerShellCode (17 items)">PowerShellCode</a> <a href="https://adsecurity.org/?tag=powershellhacking" class="tag-cloud-link tag-link-68 tag-link-position-31" style="font-size: 8pt;" aria-label="PowerShellHacking (5 items)">PowerShellHacking</a> <a href="https://adsecurity.org/?tag=powershellv5" class="tag-cloud-link tag-link-69 tag-link-position-32" style="font-size: 8pt;" aria-label="PowerShellv5 (5 items)">PowerShellv5</a> <a href="https://adsecurity.org/?tag=powersploit" class="tag-cloud-link tag-link-232 tag-link-position-33" style="font-size: 10.453608247423pt;" aria-label="PowerSploit (8 items)">PowerSploit</a> <a href="https://adsecurity.org/?tag=presentation" class="tag-cloud-link tag-link-422 tag-link-position-34" style="font-size: 9.7319587628866pt;" aria-label="Presentation (7 items)">Presentation</a> <a href="https://adsecurity.org/?tag=security" class="tag-cloud-link tag-link-576 tag-link-position-35" style="font-size: 8pt;" aria-label="Security (5 items)">Security</a> <a href="https://adsecurity.org/?tag=silverticket" class="tag-cloud-link tag-link-304 tag-link-position-36" style="font-size: 11.175257731959pt;" aria-label="SilverTicket (9 items)">SilverTicket</a> <a href="https://adsecurity.org/?tag=sneakyadpersistence" class="tag-cloud-link tag-link-596 tag-link-position-37" style="font-size: 9.0103092783505pt;" aria-label="SneakyADPersistence (6 items)">SneakyADPersistence</a> <a href="https://adsecurity.org/?tag=spn" class="tag-cloud-link tag-link-294 tag-link-position-38" style="font-size: 9.0103092783505pt;" aria-label="SPN (6 items)">SPN</a> <a href="https://adsecurity.org/?tag=tgs" class="tag-cloud-link tag-link-528 tag-link-position-39" style="font-size: 9.0103092783505pt;" aria-label="TGS (6 items)">TGS</a> <a href="https://adsecurity.org/?tag=tgt" class="tag-cloud-link tag-link-529 tag-link-position-40" style="font-size: 9.0103092783505pt;" aria-label="TGT (6 items)">TGT</a> <a href="https://adsecurity.org/?tag=windows7" class="tag-cloud-link tag-link-117 tag-link-position-41" style="font-size: 8pt;" aria-label="Windows7 (5 items)">Windows7</a> <a href="https://adsecurity.org/?tag=windows10" class="tag-cloud-link tag-link-494 tag-link-position-42" style="font-size: 10.453608247423pt;" aria-label="Windows10 (8 items)">Windows10</a> <a href="https://adsecurity.org/?tag=windowsserver2008r2" class="tag-cloud-link tag-link-46 tag-link-position-43" style="font-size: 9.0103092783505pt;" aria-label="WindowsServer2008R2 (6 items)">WindowsServer2008R2</a> <a href="https://adsecurity.org/?tag=windowsserver2012" class="tag-cloud-link tag-link-47 tag-link-position-44" style="font-size: 11.175257731959pt;" aria-label="WindowsServer2012 (9 items)">WindowsServer2012</a> <a href="https://adsecurity.org/?tag=windowsserver2012r2" class="tag-cloud-link tag-link-54 tag-link-position-45" style="font-size: 9.7319587628866pt;" aria-label="WindowsServer2012R2 (7 items)">WindowsServer2012R2</a></div> </div><div id="search-2" class="sidebar-wrap widget_search"><form class="searchform" method="get" action="https://adsecurity.org"> <div class="input-group"> <div class="form-group live-search-input"> <label for="s" class="screen-reader-text">Search for:</label> <input type="text" id="s" name="s" class="form-control" placeholder="Search"> </div> <span class="input-group-btn"> <button class="btn btn-default" type="submit"><i class="fa fa-search"></i></button> </span> </div> </form></div> <div id="recent-posts-2" class="sidebar-wrap widget_recent_entries"> <h3>Recent Posts</h3> <ul> <li> <a href="https://adsecurity.org/?p=4436">BSides Dublin – The Current State of Microsoft Identity Security: Common Security Issues and Misconfigurations – Sean Metcalf</a> </li> <li> <a href="https://adsecurity.org/?p=4434">DEFCON 2017: Transcript – Hacking the Cloud</a> </li> <li> <a href="https://adsecurity.org/?p=4432">Detecting the Elusive: Active Directory Threat Hunting</a> </li> <li> <a href="https://adsecurity.org/?p=4430">Detecting Kerberoasting Activity</a> </li> <li> <a href="https://adsecurity.org/?p=4428">Detecting Password Spraying with Security Event Auditing</a> </li> </ul> </div><div id="recent-comments-2" class="sidebar-wrap widget_recent_comments"><h3>Recent Comments</h3><ul id="recentcomments"><li class="recentcomments"><span class="comment-author-link">Derek</span> on <a href="https://adsecurity.org/?p=3592#comment-13603">Attacking Read-Only Domain Controllers (RODCs) to Own Active Directory</a></li><li class="recentcomments"><span class="comment-author-link"><a href="https://ADSecurity.org" class="url" rel="ugc">Sean Metcalf</a></span> on <a href="https://adsecurity.org/?p=3782#comment-13545">Securing Microsoft Active Directory Federation Server (ADFS)</a></li><li class="recentcomments"><span class="comment-author-link">Brad</span> on <a href="https://adsecurity.org/?p=3782#comment-13544">Securing Microsoft Active Directory Federation Server (ADFS)</a></li><li class="recentcomments"><span class="comment-author-link">Joonas</span> on <a href="https://adsecurity.org/?p=3719#comment-13229">Gathering AD Data with the Active Directory PowerShell Module</a></li><li class="recentcomments"><span class="comment-author-link"><a href="https://ADSecurity.org" class="url" rel="ugc">Sean Metcalf</a></span> on <a href="https://adsecurity.org/?p=3719#comment-13215">Gathering AD Data with the Active Directory PowerShell Module</a></li></ul></div><div id="archives-2" class="sidebar-wrap widget_archive"><h3>Archives</h3> <ul> <li><a href='https://adsecurity.org/?m=202406'>June 2024</a></li> <li><a href='https://adsecurity.org/?m=202405'>May 2024</a></li> <li><a href='https://adsecurity.org/?m=202005'>May 2020</a></li> <li><a href='https://adsecurity.org/?m=202001'>January 2020</a></li> <li><a href='https://adsecurity.org/?m=201908'>August 2019</a></li> <li><a href='https://adsecurity.org/?m=201903'>March 2019</a></li> <li><a href='https://adsecurity.org/?m=201902'>February 2019</a></li> <li><a href='https://adsecurity.org/?m=201810'>October 2018</a></li> <li><a href='https://adsecurity.org/?m=201808'>August 2018</a></li> <li><a href='https://adsecurity.org/?m=201805'>May 2018</a></li> <li><a href='https://adsecurity.org/?m=201801'>January 2018</a></li> <li><a href='https://adsecurity.org/?m=201711'>November 2017</a></li> <li><a href='https://adsecurity.org/?m=201708'>August 2017</a></li> <li><a href='https://adsecurity.org/?m=201706'>June 2017</a></li> <li><a href='https://adsecurity.org/?m=201705'>May 2017</a></li> <li><a href='https://adsecurity.org/?m=201702'>February 2017</a></li> <li><a href='https://adsecurity.org/?m=201701'>January 2017</a></li> <li><a href='https://adsecurity.org/?m=201611'>November 2016</a></li> <li><a href='https://adsecurity.org/?m=201610'>October 2016</a></li> <li><a href='https://adsecurity.org/?m=201609'>September 2016</a></li> <li><a href='https://adsecurity.org/?m=201608'>August 2016</a></li> <li><a href='https://adsecurity.org/?m=201607'>July 2016</a></li> <li><a href='https://adsecurity.org/?m=201606'>June 2016</a></li> <li><a href='https://adsecurity.org/?m=201604'>April 2016</a></li> <li><a href='https://adsecurity.org/?m=201603'>March 2016</a></li> <li><a href='https://adsecurity.org/?m=201602'>February 2016</a></li> <li><a href='https://adsecurity.org/?m=201601'>January 2016</a></li> <li><a href='https://adsecurity.org/?m=201512'>December 2015</a></li> <li><a href='https://adsecurity.org/?m=201511'>November 2015</a></li> <li><a href='https://adsecurity.org/?m=201510'>October 2015</a></li> <li><a href='https://adsecurity.org/?m=201509'>September 2015</a></li> <li><a href='https://adsecurity.org/?m=201508'>August 2015</a></li> <li><a href='https://adsecurity.org/?m=201507'>July 2015</a></li> <li><a href='https://adsecurity.org/?m=201506'>June 2015</a></li> <li><a href='https://adsecurity.org/?m=201505'>May 2015</a></li> <li><a href='https://adsecurity.org/?m=201504'>April 2015</a></li> <li><a href='https://adsecurity.org/?m=201503'>March 2015</a></li> <li><a href='https://adsecurity.org/?m=201502'>February 2015</a></li> <li><a href='https://adsecurity.org/?m=201501'>January 2015</a></li> <li><a href='https://adsecurity.org/?m=201412'>December 2014</a></li> <li><a href='https://adsecurity.org/?m=201411'>November 2014</a></li> <li><a href='https://adsecurity.org/?m=201410'>October 2014</a></li> <li><a href='https://adsecurity.org/?m=201409'>September 2014</a></li> <li><a href='https://adsecurity.org/?m=201408'>August 2014</a></li> <li><a href='https://adsecurity.org/?m=201407'>July 2014</a></li> <li><a href='https://adsecurity.org/?m=201406'>June 2014</a></li> <li><a href='https://adsecurity.org/?m=201405'>May 2014</a></li> <li><a href='https://adsecurity.org/?m=201404'>April 2014</a></li> <li><a href='https://adsecurity.org/?m=201403'>March 2014</a></li> <li><a href='https://adsecurity.org/?m=201402'>February 2014</a></li> <li><a href='https://adsecurity.org/?m=201307'>July 2013</a></li> <li><a href='https://adsecurity.org/?m=201211'>November 2012</a></li> <li><a href='https://adsecurity.org/?m=201203'>March 2012</a></li> <li><a href='https://adsecurity.org/?m=201202'>February 2012</a></li> </ul> </div><div id="categories-2" class="sidebar-wrap widget_categories"><h3>Categories</h3> <ul> <li class="cat-item cat-item-565"><a href="https://adsecurity.org/?cat=565">ActiveDirectorySecurity</a> </li> <li class="cat-item cat-item-55"><a href="https://adsecurity.org/?cat=55">Apple Security</a> </li> <li class="cat-item cat-item-431"><a href="https://adsecurity.org/?cat=431">Cloud Security</a> </li> <li class="cat-item cat-item-17"><a href="https://adsecurity.org/?cat=17">Continuing Education</a> </li> <li class="cat-item cat-item-396"><a href="https://adsecurity.org/?cat=396">Entertainment</a> </li> <li class="cat-item cat-item-347"><a href="https://adsecurity.org/?cat=347">Exploit</a> </li> <li class="cat-item cat-item-1039"><a href="https://adsecurity.org/?cat=1039">Hacking</a> </li> <li class="cat-item cat-item-168"><a href="https://adsecurity.org/?cat=168">Hardware Security</a> </li> <li class="cat-item cat-item-172"><a href="https://adsecurity.org/?cat=172">Hypervisor Security</a> </li> <li class="cat-item cat-item-126"><a href="https://adsecurity.org/?cat=126">Linux/Unix Security</a> </li> <li class="cat-item cat-item-343"><a href="https://adsecurity.org/?cat=343">Malware</a> </li> <li class="cat-item cat-item-11"><a href="https://adsecurity.org/?cat=11">Microsoft Security</a> </li> <li class="cat-item cat-item-819"><a href="https://adsecurity.org/?cat=819">Mitigation</a> </li> <li class="cat-item cat-item-48"><a href="https://adsecurity.org/?cat=48">Network/System Security</a> </li> <li class="cat-item cat-item-7"><a href="https://adsecurity.org/?cat=7">PowerShell</a> </li> <li class="cat-item cat-item-698"><a href="https://adsecurity.org/?cat=698">RealWorld</a> </li> <li class="cat-item cat-item-21"><a href="https://adsecurity.org/?cat=21">Security</a> </li> <li class="cat-item cat-item-234"><a href="https://adsecurity.org/?cat=234">Security Conference Presentation/Video</a> </li> <li class="cat-item cat-item-1045"><a href="https://adsecurity.org/?cat=1045">Security Recommendation</a> </li> <li class="cat-item cat-item-24"><a href="https://adsecurity.org/?cat=24">Technical Article</a> </li> <li class="cat-item cat-item-4"><a href="https://adsecurity.org/?cat=4">Technical Reading</a> </li> <li class="cat-item cat-item-2"><a href="https://adsecurity.org/?cat=2">Technical Reference</a> </li> <li class="cat-item cat-item-156"><a href="https://adsecurity.org/?cat=156">TheCloud</a> </li> <li class="cat-item cat-item-930"><a href="https://adsecurity.org/?cat=930">Vulnerability</a> </li> </ul> </div><div id="meta-2" class="sidebar-wrap widget_meta"><h3>Meta</h3> <ul> <li><a href="https://adsecurity.org/wp-login.php">Log in</a></li> <li><a href="https://adsecurity.org/?feed=rss2">Entries feed</a></li> <li><a href="https://adsecurity.org/?feed=comments-rss2">Comments feed</a></li> <li><a href="https://wordpress.org/">WordPress.org</a></li> </ul> </div> </div> </div> <div id="sidebar_bottom" class="sidebar widget-area row footer-widget-col-3"> <div id="text-2" class="sidebar-wrap widget_text col-sm-4"><h3>Copyright</h3> <div class="textwidget">Content Disclaimer: This blog and its contents are provided "AS IS" with no warranties, and they confer no rights. Script samples are provided for informational purposes only and no guarantee is provided as to functionality or suitability. The views shared on this blog reflect those of the authors and do not represent the views of any companies mentioned. Content Ownership: All content posted here is intellectual work and under the current law, the poster owns the copyright of the article. Terms of Use Copyright 漏 2011 - 2020.</div> </div> </div> <div id="footer" class="row default-footer"> <div class="copyright-developer"> <div id="copyright"> <p>Content Disclaimer: This blog and its contents are provided "AS IS" with no warranties, and they confer no rights. Script samples are provided for informational purposes only and no guarantee is provided as to functionality or suitability. The views shared on this blog reflect those of the authors and do not represent the views of any companies mentioned. </p> </div> <div id="developer"> <p> Made with <i class="fa fa-heart"></i> by <a href="https://www.graphene-theme.com/" rel="nofollow">Graphene Themes</a>. </p> </div> </div> </div> </div>  <script>  <a href="#" id="back-to-top" title="Back to top"><i class="fa fa-chevron-up"></i></a> <script defer type="text/javascript" src="https://adsecurity.org/wp-includes/js/comment-reply.min.js?ver=6.5.5" id="comment-reply-js" async="async" data-wp-strategy="async"></script> </body> </html>