Forever learning, turning real-world problems into real IT solutions.
Introduction As organizations continue their journey toward stronger authentication security, eliminating RC4 and enforcing AES-only Kerberos configurations has become a common objective. Recently, we worked on a case where everything…
In this post, we explore a real-world case of authentication failures that occurred after patching domain controllers. The issue, triggered by NTLM compatibility mismatches, caused a critical financial application to…
In this post, I dive into a real-world case where a vulnerability scan flagged a server for the Sweet32 birthday attack due to an outdated 3DES cipher. Despite disabling the…
In this post, we dive into the technical challenge of GPO registry tattooing, where settings applied by Group Policy Objects persist even after the GPO is removed. We’ll explain why…
If you’re considering adding a load balancer between your clients and domain controllers (DCs), stop right there! While load balancers can work wonders in many networking scenarios, Active Directory (AD)…