Guy Teverovsky

HIP is back! #cybersecurity #HybridIdentity #NYC my.sociabble.com/3fdWSqJKCANp

Semperis Security Researcher @TomerNahum1 reported hard matching abuse that can enable #Azure AD account takeover in #hybrididentity environments. Keep reading: semperis.com/blog/syncjacki… #ActiveDirectory #ADsecurity

"With #ForestDruid, we took the attack path analysis concept and flipped it over. Instead of looking at it from the attacker's view, we looked at it from the inside out as a defender." Check out the new community tool: lnkd.in/g8cXP7AT #newproduct

All Ur AS Are Belong To Us. @SemperisTech Security Researcher Charlie Clark (@exploitph) discusses a potential attack path related to AS Requested Service Tickets. #ransomware #CybersecurityAwarenessMonth #BeIdentitySmart semperis.com/blog/new-attac…

#AzureAD admins, beware: #Cyberattackers can use SMTP matching to obtain privileged access via eligible role assignments. In this post by @SemperisTech Security Researchers Sapir Federovsky and Tomer Nahum, learn how- and how to stop them. semperis.com/blog/smtp-matc…

From our own Semperians. Awesome work @sapirxfed

It's a banner day for enterprise #identityprotection! We've raised over $200 million in #SeriesC funding led by @KKR_Co with @1011vc, @Paladincap, @AtriumHealth Strategic Fund, Tech Pioneers Fund, and existing investors, including @insightpartners: semperis.com/press-release/….

@debonairmook @Cyb3rMonk @topotam77 @ipurple It's indeed a persistence attack. You have to be able to read KDS Root Key attributes - permissions that are granted only to DA/EA/SYSTEM by default

Great work by @SemperisTech Research team!

GMSA passwords aren’t what you think. Read all about it in @YuG0rd’s post, where he dives into how gMSA passwords are generated and introduces the Golden GMSA attack. semperis.com/blog/golden-gm…

Ever heard of SPN-jacking? Delve into how attackers could use SPN-jacking to compromise a host or service, how to detect it, and how to prevent it in "SPN-jacking: An Edge Case in WriteSPN Abuse," with @elad_shamir. semperis.com/blog/spn-jacki… #cyberattacks #kerberos

I previously said don't use msds-memberTransitive/msds-memberOfTransitive and this post will explain why I said that. blog.joeware.net/2021/04/19/606… #ActiveDirectory #fixyershit

🥇This morning we woke up as proud #SCAwards WINNERS! Taking home 𝘽𝙚𝙨𝙩 𝘽𝙪𝙨𝙞𝙣𝙚𝙨𝙨 𝘾𝙤𝙣𝙩𝙞𝙣𝙪𝙞𝙩𝙮/#𝘿𝙞𝙨𝙖𝙨𝙩𝙚𝙧𝙍𝙚𝙘𝙤𝙫𝙚𝙧𝙮 𝙎𝙤𝙡𝙪𝙩𝙞𝙤𝙣 for recognition of our ADFR solution is a great honor! Read more: bit.ly/2HZLm8g

Many of you are going to love this: Public preview of #AzureAD support for Windows VM's in Azure is live. Greatly simplifies securing your IaaS deployments! techcommunity.microsoft.com/t5/Azure-Activ…

With Active Directory being key to a large number of both on-premises and #cloud systems; when was the last time you successfully tested your #ActiveDirectory Disaster Recovery Plan? #Microsoft #identity

Andy Robbins @_wald0 and Rohan Vazarkar @CptJesus co-authors of BloodHound, will be sharing valuable insights at the upcoming @HIPConf on November 5th and 6th. Register now: okt.to/7qIfDa #HipConf

The Hybrid Identity Protection Conference is the premiere educational and networking event for identity experts taking place November 5th-6th. Register Now:  okt.to/cnohmQ #HIPConf

You don't want to miss this! Join our webinar on June 19th to get two @Microsoft MVPs, @tonyszko and @grouppolicyguy, insider views into how to approach #activedirectory disaster recover if your AD experiences a #ransomware attack! Register now: bit.ly/2xIEj1u

We are excited to announce that registration for the 2018 Hybrid Identity Protection Conference is now open! ow.ly/jy0630jBbM1 #HIPConf #IdentityProtection