by Darren Mar-Elia | Jun 16, 2020 | CVE-2020-1317, Group Policy, Security-related
Earlier this month, Microsoft released an advisory for CVE-2020-1317 which describes a privilege escalation vulnerability in Group Policy. This was further detailed by the discoverer of the vulnerability on the Cyberark website. The nature of this issue is interesting...
by Darren Mar-Elia | Dec 1, 2019 | Whitepaper
Download...
by Darren Mar-Elia | Nov 19, 2019 | Security-related
About a year ago, I posted about the perils of granting someone write access on the Active Directory Domain NC “head” object, and how you could use that and some quirks in Restricted Groups policy to essentially elevate your access in AD, just based on...
by Darren Mar-Elia | Oct 15, 2019 | Security-related
One of the advantages of messing around with Group Policy since before it shipped, is that there is a lot of stuff rattling around in my head that I’ve been re-thinking in the context of today’s modern threat landscape. This allows me to think about...
by Darren Mar-Elia | Jun 14, 2019 | Security-related
As I think about Group Policy as a target for attackers, there are many obvious avenues to take advantage of a poorly protected GP infrastructure. I’ve written about many of these here: Sending GPOs Down the Wrong Track–Redirecting the GPT Group Policy...
