Microsoft Released Simuland
Posted incloudsecurity

Microsoft Released Simuland

Microsoft has open-sourced SIMULAND a tool that can be used to build lab environments where security teams can simulate attacks and verify the detection effectiveness of Microsoft security products. SimuLand…
Exchange Exploit on APT Radar

Exchange Exploit on APT Radar

Earlier in the month of March , we have discussed on the Exchange exploits that are actively exploited by threat actors, this post is a continuation of the Previous Exploits…
Exchange Antiphising Feature

Exchange Antiphising Feature

Recently Google implemented new security features to Gmail to address phishing threats, and now Microsoft is following suit with a planned update to Exchange. Via Microsoft's 365 Roadmap, the company…
Microsoft Warns on BEC

Microsoft Warns on BEC

Microsoft is warning of a large-scale BEC campaign that targeted more than 120 organizations with gift card scam. The attackers targeted organizations in multiple industries, including the consumer goods, process…
Patch Tuesday April 2021

Patch Tuesday April 2021

Microsoft's April 2021 Patch Tuesday, comes five zero-day vulnerabilities and more Critical Microsoft Exchange vulnerabilities. Microsoft has fixed 108 vulnerabilities, with 19 classified as Critical and 89 as Important. Excluding…
CyberBattleSIM

CyberBattleSIM

CyberBattleSim allows for the training of automated agents, and provides a Python-based OpenAI Gym interface for that. In the simulated environments, defenders can leverage reinforcement learning algorithms and set up…
PSExec Privilege Escalation

PSExec Privilege Escalation

PsExec is a Sysinternals utility designed to allow administrators to perform various activities on remote computers, such as launching executables and displaying the output on the local computer or creating…
Purple Knight AD Assessment Tool
Posted inMITRE

Purple Knight AD Assessment Tool

Microsoft Active Directory (AD) is used by 90 percent of enterprises as the primary source of trust for identity and access, but it’s also exploited in many cyberattacks. Since AD…