Olivia
Online
Forestall
@forestallio
Forestall | Emerging Threats, Advanced Solutions
Ankara/Turkey
Joined February 2020
0 Following
154 Followers
54 Posts
Pinned Tweet
FSProtect - Resilient Active Directory with Ease
- Vulnerability Assessment
- AD Inventory Enumeration
- Local User & Group Enumeration
- Attack Path Finding with Graph Visualization
More Details;
https://t.co/6XFhTBN4cU
Request Demo;
[email protected]
https://t.co/Muresanp8g
📌Forestall (@forestallio) Security dijital envanterlerin koruyucusu olarak öne çıkıyor.
📌Firma, şirketlerin dijital altyapılardaki kritik güvenlik açıklarını hedef alan ve siber saldırılar düzenleyen korsanlara karşı önleyici hizmetler sunuyor.
📌Forestall’ın, Kurucu Ortağı Furkan Özer, https://t.co/P5SjCKeNsj’a konuştu.
🔗https://t.co/4HDzxfDT28
Learn more about EKUwu and the mitigation strategies:
https://t.co/pMnaOME0Lr
(3/3)
🚨 New ADCS Vulnerability: EKUwu 🚨
A newly discovered EKUwu vulnerability in Active Directory Certificate Services (AD CS) allows attackers to bypass Extended Key Usage (EKU) policies for potential privilege escalation. (1/3)
If you're using version 1 certificate templates, remove them from your environment. These templates are particularly vulnerable to exploitation. Instead, upgrade to version 2 for better protection and security hardening. (2/3)
We are thrilled to announce that Forestall has proudly participated as an industry partner in the #LockedShields2023 exercise, organized by the NATO Cooperative Cyber Defence Centre of Excellence @ccdcoe
#LockedShields2023 #CCDCOE #Forestall #CyberSecurity
Hacktrick22'ye BRONZE sponsorlukla destek olan Forestall'a teşekkür ederiz.
#hacktrick22
@forestallio
We participated in the biggest and most complex international live-fire cyber defense exercise #LockedShields as an industry partner again.
It was a pleasure to share our knowledge and collaborate with the @ccdcoe.
#CCDCOE #LockedShields2022
#LockedShields2022 is a massive collaborative effort. Thank you to all our partners - you help us make #LockedShields the biggest and most complex international live-fire cyber defence exercise in the world!💪
For example,
- Unprivileged accounts with local admin rights
- Service users with expired passwords
- Risky stealth admin objects
- Recently created privileged accounts
- Inactive privileged accounts
Check it out. 👇
https://t.co/6XFhTBN4cU
📣 FSProtect - Feature Spotlight
With #FSProtect, you can create complex queries to analyze Active Directory inventory in terms of both security and management.
Also, based on these queries FSProtect creates periodic reports and notifies you with mail integration.
Our latest blog post about Combined Attack Path Analysis clarifies the attack path management problem in large enterprises with #BloodHound and #Kangal. You can also find mitigation examples for different cases.
[EN] - https://t.co/jvdEgx41nr
[TR] - https://t.co/aQ6QphaBsr
With this feature, analysts can easily spot the misconfigured settings and their source GPO without the need to examine all policy objects.
Check it out. 👇
https://t.co/6XFhTBN4cU
📣 FSProtect - Feature Spotlight
FSProtect can analyze the Resultant Set of Policies on Computers, Users, and Organizational Units with processing link order, policy enforcement, and inheritance settings. It reveals misconfigured and insecure GPO settings.
With this feature,
- Trust specific vulnerabilities
- Cross domain/forest group and local group memberships
- Cross domain/forest access control entries
- Cross domain/forest sessions
and many more key points which cause the enterprise-level compromise can be easily identified.
📣 FSProtect - Feature Spotlight
FSProtect can collect and combine data from multiple domains and forests. So, analysts can view the whole Active Directory infrastructure and attack paths in a single pane of glass.
Check it out. 👇
https://t.co/6XFhTBN4cU
Our team released a tool to combine attack paths found by Bloodhound. It makes it easy to prioritize risks on Tier-0 assets especially in large AD environments. Contribution and feedbacks are welcomed, as always.
https://t.co/eW8LIJrPk1
🚨 #ADSecurityAlert
#PrintNightmare (CVE-2021-1675) RCE in Windows Spooler Service
Mitigation: Stop and disable the Print Spooler on every system that does not need it
#PowerShell (via Priv. User)
Stop-Service -Name Spooler -Force
Set-Service -Name Spooler -StartupType Disabled
📢 Our flagship product #FSProtect now available in the #Azure Marketplace.
Hybrid Active Directory environment and Azure AD support is on the way.
https://t.co/ytoGapXymZ
How to Secure Kerberos Authentication Protocol – 1
Blog: https://t.co/KGPs29YQaJ
#activedirectory #adsecurity #activedirectorysecurity
Kerberos Protokol Güvenliği – 1
Blog: https://t.co/FW5mZIOGw6
#activedirectory #adguvenligi #activedirectoryguvenligi
#GISEC 2021 has finished!
It was a pleasure to be in here.
Thank you to all visitors, @siberkume and @GISECDUBAI
Most Popular Users
Elon Musk 
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.9M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.8M followers
Taylor Swift
@taylorswift13
80.6M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.5M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.1M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
59.9M followers