🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

Today we unveil BadSuccessor - a new no-fix Active Directory privilege escalation technique. We will explore the recently introduced dMSA feature, and show how it enables turning a very common, seemingly benign permission, into a full domain take over. akamai.com/blog/security-…

We did an analysis across participating customers & found that ~96% had > 1 user that has the necessary permissions to be susceptible to this attack, but only ~3% had a 2025 server. So there are a lot of orgs that have the opportunity to resolve this issue before they bring a

We just released a new beta build for PingCastle on GitHub to detect the new BadSuccessor risk that Yuval Gordon found! github.com/netwrix/pingca… Code is in the BadSuccessor branch.

I'm super happy to announce an operationally weaponized version of Yuval Gordon's BadSuccessor in .NET format! With a minimum of "CreateChild" privileges over any OU it allows for automatic escalation to Domain Admin (DA). Enjoy your inline .NET execution! github.com/logangoins/Sha…