Active Directory – TheCyberThrone

CVE-2025-21293 PoC Exploit Code Released

Vulnerability Overview CVE-2025-21293 is an elevation of privilege vulnerability in Active Directory Domain Services. The vulnerability arises from excessive permissions granted to the Network Configuration Operators group, which can be…

PravinKarthik February 6, 2025

Active Directory Bypass: Uncovering the Danger of NTLMv1

Silverfort has revealed a critical vulnerability within the NTLMv1 (New Technology LAN Manager version 1) authentication protocol, exposing organizations to significant security risks despite their efforts to disable NTLMv1 via…

PravinKarthik January 18, 2025

CISA Releases Guidance on Detecting and Mitigating AD Compromises

Active Directory is considered as a central heart of authentication and authorization for enterprise network and provides services such as Active Directory Domain Services (AD DS), Active Directory Federation Services…

PravinKarthik September 29, 2024

DFSCoerce – NTLM Relay Attack

Researchers has published a new DFSCoerce Windows NTLM relay attack that uses MS-DFSNM (Microsoft’s Distributed File System) to take over Windows domains. Microsoft Active Directory Certificate Services (ADCS) is a…

PravinKarthik June 23, 2022

KrbRelayUp – Leveraging Privilege Escalation in Windows

A privilege escalation hacking tool, KrbRelayUp, was publicly disclosed on GitHub by security researcher Mor Davidovich last month. This tool is a wrapper that can streamline the use of some…

PravinKarthik May 26, 2022

Microsoft May 2022 Patch Tuesday has a bug ! That Worries

Microsoft has acknowledged about a possible authentication problems caused by its May security updates, released lat week. The authentication problems are just seen with Windows devices that are used as domain controllers,…

PravinKarthik May 16, 2022

Microsoft Urges to Patch AD Vulnerability

Microsoft released an alert on two AD vulnerabilities addressed with the November 2021 Patch Tuesday, urging customers to install the available patches as soon as possible, to prevent potential compromise.…

PravinKarthik December 21, 2021