blueteamsec

627 readers

40 users here now

For [Blue|Purple] Teams in Cyber Defence - covering discovery, detection, response, threat intelligence, malware, offensive tradecraft and tooling, deception, reverse engineering etc.

founded 2 years ago

MODERATORS

digicat

Using NTLM Reflection to Own Active Directory (CVE-2025-33073) (www.depthsecurity.com)

submitted 4 weeks ago by digicat to c/blueteamsec

1 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] Hirom@beehaw.org 1 points 4 weeks ago

Are there alternatives to AD that don't suffer from regular critical vulns?

I know of a handful of auth provider solutions that are OSS and with LDAP and OAuth2 support, but I have no idea of those are viable for an organisation that need to manage Win hosts, not just web services.

permalink
fedilink
source