DFIR Series: Windows Defender Tamper Protection

https://blog.secarclabs.com/post/dfir-series-windows-defender-tamper-protection Windows Defender Tamper Protection is a security feature to enhance the protection provided by Windows Defender Antivirus. Tamper Protection is designed to prevent malicious actors or unauthorized programs from modifying or disabling key security settings in Windows Defender. When Tamper Protection is enabled, it helps safeguard critical Windows Defender features, including real-time protection, cloud-based […]

DFIR Series: Windows Defender Tamper Protection Read More »

OffSec Series – AS-REP Roasting

https://blog.secarclabs.com/post/offsec-series-as-rep-roasting Overview Technique that is used to target weak user account settings in Active Directory, particularly those with the “Do not require Kerberos preauthentication” setting enabled to abuse the lack of Kerberos pre-authentication to retrieve password hashes. This setting allows a user account to request and obtain a service ticket without providing initial authentication, essentially

OffSec Series – AS-REP Roasting Read More »

Scroll to Top