IT security: Disrupting the cybersecurity kill chain by detecting domain reconnaissance

Cyberattacks are a growing threat, and organizations are investing time and money in security strategies to make certain that their infrastructures are secure. Active Directory (AD) is a constant target for compromise,... Read more »

IT security: PowerShell as a cyberattack tool

Tools and features introduced with the intention of benefiting and empowering an organization can sometimes end up being misused. PowerShell is a classic example. PowerShell is a more powerful command-line interface that... Read more »

How to Find Active Directory Accounts with Expiring Passwords

Every organization has one or more user accounts —  used for services, applications, development, kiosks, or even standard employees — which need to ensure the password changes or the account will... Read more »

Domain Password Policies: Configuring and Auditing Correctly!

Over the past 14 years, I have been around the world helping admins, auditors, and security professionals understand how the domain password policy works in Active Directory. The default behavior has... Read more »