https://binsec.nl/
B!ns3c - Cybersecurity Blog
Cybersecurity Blog, I write to learn and share my thoughts about cybersecurity, and I place my CTF write-ups on this blog. Enjoy!
2023-07-18T14:11:07+02:00
T13nn3s
https://binsec.nl/
Jekyll
© 2023 T13nn3s
/assets/img/favicons/favicon.ico
/assets/img/favicons/favicon-96x96.png
RPC Firewall by Zero Networks
2023-04-03T20:00:00+02:00
2023-04-03T20:00:00+02:00
https://binsec.nl/blogs/microsoft/2023/04/03/blogs-rpc-firewall.html
T13nn3s
As a Cybersecurity Consultant on the blue side of the Cybersecurity spectrum, I know the importance of the security hardening of the IT network. My specialty is to secure Windows networks against adversaries. I mainly use Microsoft Defender products or products from WithSecure (formerly known as F-Secure). But, both of these products are not very strong in detecting RPC-based attacks. A signifi...
Mitigate Google Translate Phishing
2023-03-25T19:00:00+01:00
2023-03-25T19:00:00+01:00
https://binsec.nl/blogs/microsoft/2023/03/25/blogs-mitigate-google-translate-phishing.html
T13nn3s
Mitigate Google Translate Phishing
Cybercriminals have found a sneaky way to deceive people by disguising their harmful URLs with the Google Translate service, making it harder for email security systems to detect malicious attacks as the URL in the email seems valid and legitimate. In fact, the Google Translate URL points to a malicious website under the control of the attackers. This new tec...
Hack The Box Write-Up Flight
2023-03-13T23:00:00+01:00
2023-03-13T23:00:00+01:00
https://binsec.nl/hack%20the%20box/2023/03/13/hackthebox-write-up-flight.html
T13nn3s
About Flight
In this post, I’m writing a write-up for the machine Flight from Hack The Box. Hack The Box is an online platform to train your ethical hacking skills and penetration testing skills
Flight is a ‘Hard’ rated box. Grabbing and submitting the user.txt flag, your points will be raised by 20 and submitting the root flag you points will be raised by 40.
Foothold
After running the port...
Pending Device in Azure AD
2023-02-11T09:00:00+01:00
2023-02-11T09:00:00+01:00
https://binsec.nl/blogs/microsoft/2023/02/11/blogs-pending-device-in-azure-ad.html
T13nn3s
Issue
Before April 2022, for onboarding Windows Server 2012 R2 and Windows Server 2016 servers on Microsoft Defender, you had to use Group Policy for applying the security policies. After April 2022, Microsoft added support for the modern unified solution to onboard Windows Server 2012 R2 and Windows Server 2016 to Microsoft Defender. A prerequisite for this is that the servers are (hybrid) joi...
Fight Password Spray Attacks with Authentication Policies
2023-01-23T23:00:00+01:00
2023-01-23T23:00:00+01:00
https://binsec.nl/blogs/microsoft/2023/01/23/blogs-microsoft-authentication-policy.html
T13nn3s
Context
Beginning October 2022, Microsoft started disabling basic authentication protocols (EAS, POP, IMAP, RPS, EWS, OAB, Autodiscover and Outlook) in randomly choosen Microsoft 365 tenants. The only exception is the “Authenticated SMTP” protocol. If Microsoft detects that this protocol is in us in a Microsoft 365 tenant, this protocol will remain enabled. The end goal is to have the basic au...