This blog post has originally been published at the SpecterOps Blog. Introduction Several new Active Directory offline attack capabilities have recently been added to the DSInternals PowerShell module. These enhancements include the Golden dMSA Attack, full support for Local Administrator Password Solution (LAPS), and the ability to extract trust passwords and BitLocker recovery keys. And thanks to some changes made under the hood, large ntds.dit files (100K+ users) process much faster and it...| DSInternals
Get an overview of Windows Local Administrator Password Solution (Windows LAPS), including key scenarios and setup and management options.| learn.microsoft.com
This blog provides an analysis by Morphisec of responding to actual Citrix Bleed attacks (CVE-2023-4966), detailing threat actor tactics and recommended safeguards.| blog.morphisec.com