<?xml version="1.0" encoding="UTF-8"?>
 <rdf:RDF xmlns="http://purl.org/rss/1.0/" xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#" xmlns:content="http://purl.org/rss/1.0/modules/content/" xmlns:taxo="http://purl.org/rss/1.0/modules/taxonomy/" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:cc="http://web.resource.org/cc/" xmlns:syn="http://purl.org/rss/1.0/modules/syndication/" xmlns:admin="http://webns.net/mvcb/">
  <channel rdf:about="http://pinboard.in">
    <title>Pinboard (webframp)</title>
    <link>https://pinboard.in/u:webframp/public/</link>
    <description>recent bookmarks from webframp</description>
    <items>
      <rdf:Seq>	<rdf:li rdf:resource="https://admx.help/"/>
	<rdf:li rdf:resource="https://techcommunity.microsoft.com/t5/azure-active-directory-identity/holistic-compromised-identity-signals-from-microsoft/ba-p/2365683"/>
	<rdf:li rdf:resource="https://www.pwndefend.com/2022/02/26/rapid-active-directory-hardening-checklist/"/>
	<rdf:li rdf:resource="https://www.blackarrow.net/ad-cs-from-manageca-to-rce/"/>
	<rdf:li rdf:resource="https://www.hub.trimarcsecurity.com/post/implementing-controls-in-active-directory-protecting-against-privileged-credential-sprawl"/>
	<rdf:li rdf:resource="https://wadcoms.github.io/#"/>
	<rdf:li rdf:resource="https://www.redteamsecure.com/research/a-guide-to-kerberoasting"/>
	<rdf:li rdf:resource="https://twitter.com/lkarlslund/status/1442511773010063363"/>
	<rdf:li rdf:resource="https://detectionlab.network/"/>
	<rdf:li rdf:resource="https://insinuator.net/2021/05/dogwhisperers-sharphound-cheat-sheet/"/>
	<rdf:li rdf:resource="https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/hunting-for-reconnaissance-activities-using-ldap-search-filters/ba-p/824726"/>
	<rdf:li rdf:resource="https://cas.vancooten.com/posts/2020/11/windows-active-directory-exploitation-cheat-sheet-and-command-reference/"/>
	<rdf:li rdf:resource="https://mobile.twitter.com/SteveSyfuhs/status/1287931640929333249"/>
	<rdf:li rdf:resource="https://www.infosecmatter.com/top-16-active-directory-vulnerabilities/"/>
	<rdf:li rdf:resource="https://splunkbase.splunk.com/app/4897/"/>
	<rdf:li rdf:resource="https://www.trustedsec.com/blog/art_of_kerberoast/"/>
	<rdf:li rdf:resource="https://blogs.technet.microsoft.com/389thoughts/2017/04/18/get-rid-of-accounts-that-use-kerberos-unconstrained-delegation/"/>
	<rdf:li rdf:resource="https://blog.truesec.com/2019/12/22/introducing-laps-web-ui/"/>
	<rdf:li rdf:resource="https://blog.joeware.net/2019/03/31/5935/"/>
	<rdf:li rdf:resource="https://docs.microsoft.com/en-us/windows-server/identity/securing-privileged-access/securing-privileged-access"/>
	<rdf:li rdf:resource="https://troopers.de/downloads/troopers19/TROOPERS19_AD_Fun_With_LDAP.pdf"/>
	<rdf:li rdf:resource="https://blogs.technet.microsoft.com/askpfeplat/2014/11/23/adfs-deep-dive-planning-and-design-considerations/"/>
	<rdf:li rdf:resource="http://www.selfadsi.org/adsdb.htm"/>
	<rdf:li rdf:resource="https://techcommunity.microsoft.com/t5/Enterprise-Mobility-Security/LDAP-Reconnaissance-the-foundation-of-Active-Directory-attacks/ba-p/462973"/>
	<rdf:li rdf:resource="https://github.com/nccgroup/redsnarf"/>
	<rdf:li rdf:resource="https://github.com/cyberark/zBang/blob/master/README.md"/>
	<rdf:li rdf:resource="https://isc.sans.edu/diary/24886"/>
	<rdf:li rdf:resource="https://docs.microsoft.com/en-us/azure/active-directory/reports-monitoring/reference-sign-ins-error-codes"/>
	<rdf:li rdf:resource="https://blog.stealthbits.com/detecting-pass-the-hash-honeypots/"/>
	<rdf:li rdf:resource="https://docs.microsoft.com/en-us/windows-server/identity/ad-fs/technical-reference/the-role-of-the-ad-fs-configuration-database#using-sql-server-to-store-the-ad-fs-configuration-database"/>
	<rdf:li rdf:resource="https://github.com/leoloobeek/LAPSToolkit"/>
	<rdf:li rdf:resource="https://github.com/ANSSI-FR/ADTimeline/blob/master/README.md"/>
	<rdf:li rdf:resource="https://posts.specterops.io/kerberoasting-revisited-d434351bd4d1"/>
	<rdf:li rdf:resource="https://medium.com/@adam.toscher/top-five-ways-i-got-domain-admin-on-your-internal-network-before-lunch-2018-edition-82259ab73aaa"/>
	<rdf:li rdf:resource="http://woshub.com/who-reset-the-password-in-ad/"/>
	<rdf:li rdf:resource="https://girl-germs.com/?p=363"/>
	<rdf:li rdf:resource="https://blogs.technet.microsoft.com/askpfeplat/2015/06/29/active-directory-risk-assessments-lessons-and-tips-from-the-field-volume-1/"/>
	<rdf:li rdf:resource="http://www.irongeek.com/i.php?page=videos/derbycon8/track-2-03-the-unintended-risks-of-trusting-active-directory-lee-christensen-will-schroeder-matt-nelson"/>
	<rdf:li rdf:resource="https://github.com/hausec/ADAPE-Script/blob/master/README.md"/>
	<rdf:li rdf:resource="https://adsecurity.org/?page_id=4031"/>
	<rdf:li rdf:resource="https://www.dsinternals.com/en/auditing-active-directory-password-quality/"/>
	<rdf:li rdf:resource="https://blog.netspi.com/exploiting-adidns/"/>
	<rdf:li rdf:resource="https://www.labofapenetrationtester.com/2018/05/dcshadow-sacl.html?m=1"/>
	<rdf:li rdf:resource="https://blogs.technet.microsoft.com/pie/2017/06/30/credential-theft-made-easy-with-kerberos-delegation/"/>
	<rdf:li rdf:resource="https://rastamouse.me/2018/03/laps---part-2/"/>
	<rdf:li rdf:resource="https://rastamouse.me/2018/03/laps---part-1/"/>
	<rdf:li rdf:resource="https://cloudblogs.microsoft.com/enterprisemobility/2018/03/05/azure-ad-and-adfs-best-practices-defending-against-password-spray-attacks/"/>
	<rdf:li rdf:resource="https://blog.alsid.eu/dcshadow-explained-4510f52fc19d"/>
	<rdf:li rdf:resource="https://amarkulo.com/integrating-database-of-pwned-password-hashes-with-microsoft-ad/"/>
	<rdf:li rdf:resource="https://developer.atlassian.com/blog/2017/07/kubetoken/"/>
	<rdf:li rdf:resource="https://docs.microsoft.com/en-us/windows-server/identity/ad-ds/plan/security-best-practices/best-practices-for-securing-active-directory"/>
	<rdf:li rdf:resource="https://docs.microsoft.com/en-us/windows-server/identity/securing-privileged-access/privileged-access-workstations"/>
	<rdf:li rdf:resource="https://byt3bl33d3r.github.io/automating-the-empire-with-the-death-star-getting-domain-admin-with-a-push-of-a-button.html"/>
	<rdf:li rdf:resource="https://infrastructureanonymous.com/2015/04/11/graceful-domain-controller-promotion-and-demotion-part-1/"/>
	<rdf:li rdf:resource="http://blog.scottlowe.org/2007/01/15/linux-ad-integration-version-4/"/>
	<rdf:li rdf:resource="http://www.google.com/support/a/bin/answer.py?hl=en&amp;answer=187202"/>
	<rdf:li rdf:resource="http://www.windowsnetworking.com/articles_tutorials/Group-Policy-Deploy-Applications.html"/>
	<rdf:li rdf:resource="http://davenport.sourceforge.net/ntlm.html"/>
	<rdf:li rdf:resource="https://help.ubuntu.com/community/ActiveDirectoryWinbindHowto"/>
	<rdf:li rdf:resource="http://www.howtoforge.com/samba_ads_security_mode"/>
      </rdf:Seq>
    </items>
  </channel><item rdf:about="https://admx.help/">
    <title>Group Policy Administrative Templates</title>
    <dc:date>2022-06-03T03:00:59+00:00</dc:date>
    <link>https://admx.help/</link>
    <dc:creator>webframp</dc:creator><dc:subject>activedirectory reference grouppolicy</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:d1d3a16fddf9/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:reference"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:grouppolicy"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://techcommunity.microsoft.com/t5/azure-active-directory-identity/holistic-compromised-identity-signals-from-microsoft/ba-p/2365683">
    <title>Holistic compromised identity signals from Microsoft - Microsoft Tech Community</title>
    <dc:date>2022-04-28T17:21:41+00:00</dc:date>
    <link>https://techcommunity.microsoft.com/t5/azure-active-directory-identity/holistic-compromised-identity-signals-from-microsoft/ba-p/2365683</link>
    <dc:creator>webframp</dc:creator><dc:subject>activedirectory threathunting blueteam</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:webframp/b:08e37264a64c/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:threathunting"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:blueteam"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://www.pwndefend.com/2022/02/26/rapid-active-directory-hardening-checklist/">
    <title>Rapid Active Directory Hardening Checklist – PwnDefend</title>
    <dc:date>2022-02-28T05:09:49+00:00</dc:date>
    <link>https://www.pwndefend.com/2022/02/26/rapid-active-directory-hardening-checklist/</link>
    <dc:creator>webframp</dc:creator><dc:subject>activedirectory security</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:7373da2cdfd3/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://www.blackarrow.net/ad-cs-from-manageca-to-rce/">
    <title>AD CS: from ManageCA to RCE - BlackArrow</title>
    <dc:date>2022-02-11T21:01:23+00:00</dc:date>
    <link>https://www.blackarrow.net/ad-cs-from-manageca-to-rce/</link>
    <dc:creator>webframp</dc:creator><dc:subject>security activedirectory certificates redteam</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:667c581ed231/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:certificates"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:redteam"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://www.hub.trimarcsecurity.com/post/implementing-controls-in-active-directory-protecting-against-privileged-credential-sprawl">
    <title>Implementing Controls in Active Directory: Protecting Against Privileged Credential Sprawl</title>
    <dc:date>2021-11-22T03:05:26+00:00</dc:date>
    <link>https://www.hub.trimarcsecurity.com/post/implementing-controls-in-active-directory-protecting-against-privileged-credential-sprawl</link>
    <dc:creator>webframp</dc:creator><dc:subject>activedirectory blueteam security</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:28e16340b1b0/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:blueteam"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://wadcoms.github.io/#">
    <title>WADComs: active directory cheat sheet</title>
    <dc:date>2021-11-18T23:17:41+00:00</dc:date>
    <link>https://wadcoms.github.io/#</link>
    <dc:creator>webframp</dc:creator><description><![CDATA[Interactive AD attack cheat sheet]]></description>
<dc:subject>activedirectory redteam pentest</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:6389b84e69d9/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:redteam"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:pentest"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://www.redteamsecure.com/research/a-guide-to-kerberoasting">
    <title>A Guide to Kerberoasting | RedTeam Talks Kerberos</title>
    <dc:date>2021-11-11T23:40:48+00:00</dc:date>
    <link>https://www.redteamsecure.com/research/a-guide-to-kerberoasting</link>
    <dc:creator>webframp</dc:creator><dc:subject>kerberos activedirectory windows redteam</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:6ec9cdc87899/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:kerberos"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:windows"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:redteam"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://twitter.com/lkarlslund/status/1442511773010063363">
    <title>Lars Karlslund on Twitter: AzureAD Thread</title>
    <dc:date>2021-09-27T23:12:52+00:00</dc:date>
    <link>https://twitter.com/lkarlslund/status/1442511773010063363</link>
    <dc:creator>webframp</dc:creator><description><![CDATA[So today I started looking at Azure AD, which spawned an interesting thread with my thoughts, and lots of input and corrections from others. It also spawned need for a refresher on AD attribute security ...]]></description>
<dc:subject>AzureAD azure activedirectory twitter</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:84c0e96a99c7/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:AzureAD"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:azure"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:twitter"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://detectionlab.network/">
    <title>Introduction :: DetectionLab</title>
    <dc:date>2021-09-24T02:18:06+00:00</dc:date>
    <link>https://detectionlab.network/</link>
    <dc:creator>webframp</dc:creator><dc:subject>activedirectory blueteam terraform vagrant labs</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:3d1bd4487287/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:blueteam"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:terraform"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:vagrant"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:labs"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://insinuator.net/2021/05/dogwhisperers-sharphound-cheat-sheet/">
    <title>DogWhisperer’s SharpHound Cheat Sheet – Insinuator.net</title>
    <dc:date>2021-05-11T13:02:41+00:00</dc:date>
    <link>https://insinuator.net/2021/05/dogwhisperers-sharphound-cheat-sheet/</link>
    <dc:creator>webframp</dc:creator><dc:subject>redteam activedirectory bloodhound security blueteam</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:c67196947b9a/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:redteam"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:bloodhound"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:blueteam"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/hunting-for-reconnaissance-activities-using-ldap-search-filters/ba-p/824726">
    <title>Hunting for reconnaissance activities using LDAP search filters - Microsoft Tech Community</title>
    <dc:date>2020-11-10T00:04:37+00:00</dc:date>
    <link>https://techcommunity.microsoft.com/t5/microsoft-defender-for-endpoint/hunting-for-reconnaissance-activities-using-ldap-search-filters/ba-p/824726</link>
    <dc:creator>webframp</dc:creator><dc:subject>blueteam ldap activedirectory bloodhound redteam</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:1734913a1bde/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:blueteam"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:ldap"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:bloodhound"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:redteam"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://cas.vancooten.com/posts/2020/11/windows-active-directory-exploitation-cheat-sheet-and-command-reference/">
    <title>Windows &amp; Active Directory Exploitation Cheat Sheet and Command Reference :: Cas van Cooten — I ramble about security stuff, mostly</title>
    <dc:date>2020-11-05T14:31:14+00:00</dc:date>
    <link>https://cas.vancooten.com/posts/2020/11/windows-active-directory-exploitation-cheat-sheet-and-command-reference/</link>
    <dc:creator>webframp</dc:creator><dc:subject>security redteam activedirectory</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:6b70fdd0740e/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:redteam"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://mobile.twitter.com/SteveSyfuhs/status/1287931640929333249">
    <title>Steve Syfuhs on Twitter: &quot;It's Monday evening, the weather is great, and we're in the middle of a pandemic. Lets talk Kerberos! Or rather, it's little known nephew FAST and Armoring.&quot; / Twitter</title>
    <dc:date>2020-08-07T02:22:50+00:00</dc:date>
    <link>https://mobile.twitter.com/SteveSyfuhs/status/1287931640929333249</link>
    <dc:creator>webframp</dc:creator><dc:subject>activedirectory kerberos twitter</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:2966fd8d8103/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:kerberos"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:twitter"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://www.infosecmatter.com/top-16-active-directory-vulnerabilities/">
    <title>Top 16 Active Directory Vulnerabilities - InfosecMatter</title>
    <dc:date>2020-07-10T04:04:09+00:00</dc:date>
    <link>https://www.infosecmatter.com/top-16-active-directory-vulnerabilities/</link>
    <dc:creator>webframp</dc:creator><dc:subject>security redteam activedirectory</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:7b94c743696b/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:redteam"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://splunkbase.splunk.com/app/4897/">
    <title>ADTimeline | Splunkbase</title>
    <dc:date>2020-03-01T22:57:05+00:00</dc:date>
    <link>https://splunkbase.splunk.com/app/4897/</link>
    <dc:creator>webframp</dc:creator><dc:subject>activedirectory security splunk</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:bbbc92bb14c7/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:splunk"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://www.trustedsec.com/blog/art_of_kerberoast/">
    <title>The Art of Detecting Kerberoast Attacks | TrustedSec</title>
    <dc:date>2020-01-30T00:22:28+00:00</dc:date>
    <link>https://www.trustedsec.com/blog/art_of_kerberoast/</link>
    <dc:creator>webframp</dc:creator><dc:subject>security kerberos blueteam activedirectory</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:a6b3375c6a57/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:kerberos"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:blueteam"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://blogs.technet.microsoft.com/389thoughts/2017/04/18/get-rid-of-accounts-that-use-kerberos-unconstrained-delegation/">
    <title>Get rid of accounts that use Kerberos Unconstrained Delegation – Online memory of an Active Directory PFE</title>
    <dc:date>2020-01-05T20:13:14+00:00</dc:date>
    <link>https://blogs.technet.microsoft.com/389thoughts/2017/04/18/get-rid-of-accounts-that-use-kerberos-unconstrained-delegation/</link>
    <dc:creator>webframp</dc:creator><dc:subject>activedirectory security kerberos</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:webframp/b:363a56bcf7ec/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:kerberos"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://blog.truesec.com/2019/12/22/introducing-laps-web-ui/">
    <title>Introducing LAPS Web UI - TRUESEC Blog</title>
    <dc:date>2019-12-27T21:18:06+00:00</dc:date>
    <link>https://blog.truesec.com/2019/12/22/introducing-laps-web-ui/</link>
    <dc:creator>webframp</dc:creator><dc:subject>activedirectory laps</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:f6224bd4fd33/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:laps"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://blog.joeware.net/2019/03/31/5935/">
    <title>joeware – never stop exploring… :) » Blog Archive » LDAP Ping and Determining Your Machine’s Site</title>
    <dc:date>2019-09-30T13:22:30+00:00</dc:date>
    <link>https://blog.joeware.net/2019/03/31/5935/</link>
    <dc:creator>webframp</dc:creator><dc:subject>activedirectory ldap</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:webframp/b:87bb5f0c6714/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:ldap"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://docs.microsoft.com/en-us/windows-server/identity/securing-privileged-access/securing-privileged-access">
    <title>Securing privileged access | Microsoft Docs</title>
    <dc:date>2019-09-11T03:05:41+00:00</dc:date>
    <link>https://docs.microsoft.com/en-us/windows-server/identity/securing-privileged-access/securing-privileged-access</link>
    <dc:creator>webframp</dc:creator><dc:subject>blueteam security activedirectory</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:11e28c04f432/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:blueteam"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://troopers.de/downloads/troopers19/TROOPERS19_AD_Fun_With_LDAP.pdf">
    <title>[pdf] fun with ldap and Kerberos - active directory without windows</title>
    <dc:date>2019-08-21T01:14:56+00:00</dc:date>
    <link>https://troopers.de/downloads/troopers19/TROOPERS19_AD_Fun_With_LDAP.pdf</link>
    <dc:creator>webframp</dc:creator><dc:subject>kerberos PDF activedirectory security ldap linux</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:2907b5ae5f0d/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:kerberos"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:PDF"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:ldap"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:linux"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://blogs.technet.microsoft.com/askpfeplat/2014/11/23/adfs-deep-dive-planning-and-design-considerations/">
    <title>ADFS Deep Dive: Planning and Design Considerations | Ask Premier Field Engineering (PFE) Platforms</title>
    <dc:date>2019-07-19T01:29:29+00:00</dc:date>
    <link>https://blogs.technet.microsoft.com/askpfeplat/2014/11/23/adfs-deep-dive-planning-and-design-considerations/</link>
    <dc:creator>webframp</dc:creator><dc:subject>adfs microsoft activedirectory</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:dddf0576f11e/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:adfs"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:microsoft"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://www.selfadsi.org/adsdb.htm">
    <title>SelfADSI : The Active Directory Database</title>
    <dc:date>2019-07-10T03:48:05+00:00</dc:date>
    <link>http://www.selfadsi.org/adsdb.htm</link>
    <dc:creator>webframp</dc:creator><dc:subject>ldap activedirectory</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:3a88cec58e01/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:ldap"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://techcommunity.microsoft.com/t5/Enterprise-Mobility-Security/LDAP-Reconnaissance-the-foundation-of-Active-Directory-attacks/ba-p/462973">
    <title>LDAP Reconnaissance – the foundation of Active Directory attacks - Microsoft Tech Community - 462973</title>
    <dc:date>2019-07-04T01:42:20+00:00</dc:date>
    <link>https://techcommunity.microsoft.com/t5/Enterprise-Mobility-Security/LDAP-Reconnaissance-the-foundation-of-Active-Directory-attacks/ba-p/462973</link>
    <dc:creator>webframp</dc:creator><dc:subject>ldap activedirectory blueteam security windows</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:a786b10ba30f/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:ldap"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:blueteam"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:windows"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://github.com/nccgroup/redsnarf">
    <title>GitHub - nccgroup/redsnarf: RedSnarf is a pen-testing / red-teaming tool for Windows environments</title>
    <dc:date>2019-06-04T02:02:20+00:00</dc:date>
    <link>https://github.com/nccgroup/redsnarf</link>
    <dc:creator>webframp</dc:creator><dc:subject>tools redteam activedirectory github</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:447f2c686fff/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:tools"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:redteam"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:github"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://github.com/cyberark/zBang/blob/master/README.md">
    <title>zBang/README.md at master · cyberark/zBang</title>
    <dc:date>2019-05-24T04:55:56+00:00</dc:date>
    <link>https://github.com/cyberark/zBang/blob/master/README.md</link>
    <dc:creator>webframp</dc:creator><dc:subject>github security activedirectory tools</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:3f0c9ec618d8/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:github"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:tools"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://isc.sans.edu/diary/24886">
    <title>InfoSec Handlers Diary Blog - Pillaging Passwords from Service Accounts</title>
    <dc:date>2019-05-24T04:12:51+00:00</dc:date>
    <link>https://isc.sans.edu/diary/24886</link>
    <dc:creator>webframp</dc:creator><dc:subject>credentials security activedirectory passwords redteam</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:0a5e8163943a/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:credentials"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:passwords"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:redteam"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://docs.microsoft.com/en-us/azure/active-directory/reports-monitoring/reference-sign-ins-error-codes">
    <title>Sign-in activity report error codes in the Azure Active Directory portal | Microsoft Docs</title>
    <dc:date>2019-05-23T05:11:40+00:00</dc:date>
    <link>https://docs.microsoft.com/en-us/azure/active-directory/reports-monitoring/reference-sign-ins-error-codes</link>
    <dc:creator>webframp</dc:creator><dc:subject>activedirectory azuread azure logging</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:803b0db43d09/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:azuread"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:azure"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:logging"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://blog.stealthbits.com/detecting-pass-the-hash-honeypots/">
    <title>Detecting Pass-the-Hash with Honeypots | Insider Threat Security Blog</title>
    <dc:date>2019-04-24T04:08:47+00:00</dc:date>
    <link>https://blog.stealthbits.com/detecting-pass-the-hash-honeypots/</link>
    <dc:creator>webframp</dc:creator><dc:subject>dfir blueteam mimikatz activedirectory security</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:e4f24f838dae/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:dfir"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:blueteam"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:mimikatz"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://docs.microsoft.com/en-us/windows-server/identity/ad-fs/technical-reference/the-role-of-the-ad-fs-configuration-database#using-sql-server-to-store-the-ad-fs-configuration-database">
    <title>The Role of the AD FS Configuration Database | Microsoft Docs</title>
    <dc:date>2019-04-16T20:20:22+00:00</dc:date>
    <link>https://docs.microsoft.com/en-us/windows-server/identity/ad-fs/technical-reference/the-role-of-the-ad-fs-configuration-database#using-sql-server-to-store-the-ad-fs-configuration-database</link>
    <dc:creator>webframp</dc:creator><dc:subject>adfs sqlserver activedirectory</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:webframp/b:d819ce482f55/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:adfs"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:sqlserver"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://github.com/leoloobeek/LAPSToolkit">
    <title>GitHub - leoloobeek/LAPSToolkit: Tool to audit and attack LAPS environments</title>
    <dc:date>2019-03-28T03:23:07+00:00</dc:date>
    <link>https://github.com/leoloobeek/LAPSToolkit</link>
    <dc:creator>webframp</dc:creator><dc:subject>tools powershell github security activedirectory windows</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:ff5290714fe3/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:tools"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:powershell"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:github"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:windows"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://github.com/ANSSI-FR/ADTimeline/blob/master/README.md">
    <title>ADTimeline/README.md at master · ANSSI-FR/ADTimeline · GitHub</title>
    <dc:date>2019-03-26T22:18:14+00:00</dc:date>
    <link>https://github.com/ANSSI-FR/ADTimeline/blob/master/README.md</link>
    <dc:creator>webframp</dc:creator><dc:subject>logging security activedirectory</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:4ae749c5a37c/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:logging"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://posts.specterops.io/kerberoasting-revisited-d434351bd4d1">
    <title>Kerberoasting Revisited – Posts By SpecterOps Team Members</title>
    <dc:date>2019-02-21T22:00:44+00:00</dc:date>
    <link>https://posts.specterops.io/kerberoasting-revisited-d434351bd4d1</link>
    <dc:creator>webframp</dc:creator><dc:subject>security activedirectory kerberos</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:webframp/b:a27ea6600416/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:kerberos"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://medium.com/@adam.toscher/top-five-ways-i-got-domain-admin-on-your-internal-network-before-lunch-2018-edition-82259ab73aaa">
    <title>Top Five Ways I Got Domain Admin on Your Internal Network before Lunch (2018 Edition)</title>
    <dc:date>2019-01-02T20:52:24+00:00</dc:date>
    <link>https://medium.com/@adam.toscher/top-five-ways-i-got-domain-admin-on-your-internal-network-before-lunch-2018-edition-82259ab73aaa</link>
    <dc:creator>webframp</dc:creator><dc:subject>activedirectory redteam security</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:02c23932fdd4/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:redteam"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://woshub.com/who-reset-the-password-in-ad/">
    <title>How to Check Who Reset the Password of a User in Active Directory | Windows OS Hub</title>
    <dc:date>2018-11-29T02:41:05+00:00</dc:date>
    <link>http://woshub.com/who-reset-the-password-in-ad/</link>
    <dc:creator>webframp</dc:creator><dc:subject>windows security activedirectory passwords</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:webframp/b:3088a1be80d8/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:windows"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:passwords"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://girl-germs.com/?p=363">
    <title>Advanced Audit Policy – which GPO corresponds with which Event ID | GirlGerms online</title>
    <dc:date>2018-11-15T03:15:06+00:00</dc:date>
    <link>https://girl-germs.com/?p=363</link>
    <dc:creator>webframp</dc:creator><dc:subject>activedirectory security logging</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:b89c30a60f4b/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:logging"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://blogs.technet.microsoft.com/askpfeplat/2015/06/29/active-directory-risk-assessments-lessons-and-tips-from-the-field-volume-1/">
    <title>Active Directory Risk Assessments – Lessons and Tips from the Field – Volume #1? | Ask Premier Field Engineering (PFE) Platforms</title>
    <dc:date>2018-10-24T07:42:57+00:00</dc:date>
    <link>https://blogs.technet.microsoft.com/askpfeplat/2015/06/29/active-directory-risk-assessments-lessons-and-tips-from-the-field-volume-1/</link>
    <dc:creator>webframp</dc:creator><dc:subject>windows activedirectory</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:bd672fa9aa3e/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:windows"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://www.irongeek.com/i.php?page=videos/derbycon8/track-2-03-the-unintended-risks-of-trusting-active-directory-lee-christensen-will-schroeder-matt-nelson">
    <title>The Unintended Risks of Trusting Active Directory - Lee Christensen, Will Schroeder, Matt Nelson Derbycon 2018 (Hacking Illustrated Series InfoSec Tutorial Videos)</title>
    <dc:date>2018-10-22T02:23:04+00:00</dc:date>
    <link>http://www.irongeek.com/i.php?page=videos/derbycon8/track-2-03-the-unintended-risks-of-trusting-active-directory-lee-christensen-will-schroeder-matt-nelson</link>
    <dc:creator>webframp</dc:creator><dc:subject>presentation security activedirectory</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:79676b53af48/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:presentation"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://github.com/hausec/ADAPE-Script/blob/master/README.md">
    <title>ADAPE-Script/README.md at master · hausec/ADAPE-Script</title>
    <dc:date>2018-10-22T02:20:20+00:00</dc:date>
    <link>https://github.com/hausec/ADAPE-Script/blob/master/README.md</link>
    <dc:creator>webframp</dc:creator><dc:subject>windows activedirectory tools security</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:84585c32fd87/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:windows"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:tools"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://adsecurity.org/?page_id=4031">
    <title>» Attack Defense &amp; Detection » Active Directory Security</title>
    <dc:date>2018-10-19T11:37:47+00:00</dc:date>
    <link>https://adsecurity.org/?page_id=4031</link>
    <dc:creator>webframp</dc:creator><dc:subject>activedirectory security</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:0135cca595b9/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://www.dsinternals.com/en/auditing-active-directory-password-quality/">
    <title>Auditing Active Directory Password Quality – Directory Services Internals</title>
    <dc:date>2018-10-01T11:47:08+00:00</dc:date>
    <link>https://www.dsinternals.com/en/auditing-active-directory-password-quality/</link>
    <dc:creator>webframp</dc:creator><dc:subject>activedirectory security passwords powershell</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:1b1671ac1ea1/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:passwords"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:powershell"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://blog.netspi.com/exploiting-adidns/">
    <title>Beyond LLMNR/NBNS Spoofing – Exploiting Active Directory-Integrated DNS</title>
    <dc:date>2018-07-17T19:44:54+00:00</dc:date>
    <link>https://blog.netspi.com/exploiting-adidns/</link>
    <dc:creator>webframp</dc:creator><dc:subject>activedirectory dns security windows spoofing</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:webframp/b:3d0c4535bedf/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:dns"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:windows"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:spoofing"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://www.labofapenetrationtester.com/2018/05/dcshadow-sacl.html?m=1">
    <title>Lab of a Penetration Tester: Silently turn off Active Directory Auditing using DCShadow</title>
    <dc:date>2018-05-03T18:36:34+00:00</dc:date>
    <link>https://www.labofapenetrationtester.com/2018/05/dcshadow-sacl.html?m=1</link>
    <dc:creator>webframp</dc:creator><dc:subject>security dcshadow redteam activedirectory</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:09f7e22bd210/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:dcshadow"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:redteam"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://blogs.technet.microsoft.com/pie/2017/06/30/credential-theft-made-easy-with-kerberos-delegation/">
    <title>🐶🐶🐶 Credential theft made easy with Kerberos delegation – Once upon a case…</title>
    <dc:date>2018-04-09T14:18:16+00:00</dc:date>
    <link>https://blogs.technet.microsoft.com/pie/2017/06/30/credential-theft-made-easy-with-kerberos-delegation/</link>
    <dc:creator>webframp</dc:creator><dc:subject>kerberos activedirectory security</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:webframp/b:ded2dd40b344/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:kerberos"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://rastamouse.me/2018/03/laps---part-2/">
    <title>LAPS - Part 2</title>
    <dc:date>2018-03-20T03:18:38+00:00</dc:date>
    <link>https://rastamouse.me/2018/03/laps---part-2/</link>
    <dc:creator>webframp</dc:creator><dc:subject>activedirectory laps security</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:34b686e254fa/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:laps"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://rastamouse.me/2018/03/laps---part-1/">
    <title>LAPS - Part 1</title>
    <dc:date>2018-03-20T03:18:21+00:00</dc:date>
    <link>https://rastamouse.me/2018/03/laps---part-1/</link>
    <dc:creator>webframp</dc:creator><dc:subject>security laps activedirectory</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:ad1a007486a0/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:laps"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://cloudblogs.microsoft.com/enterprisemobility/2018/03/05/azure-ad-and-adfs-best-practices-defending-against-password-spray-attacks/">
    <title>Azure AD and ADFS best practices: Defending against password spray attacks – Enterprise Mobility + Security</title>
    <dc:date>2018-03-06T03:16:08+00:00</dc:date>
    <link>https://cloudblogs.microsoft.com/enterprisemobility/2018/03/05/azure-ad-and-adfs-best-practices-defending-against-password-spray-attacks/</link>
    <dc:creator>webframp</dc:creator><description><![CDATA[Custom banned passwords]]></description>
<dc:subject>azuread activedirectory security passwords</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:webframp/b:d28716c74fa7/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:azuread"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:passwords"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://blog.alsid.eu/dcshadow-explained-4510f52fc19d">
    <title>DCShadow explained – Alsid blog</title>
    <dc:date>2018-01-31T04:23:50+00:00</dc:date>
    <link>https://blog.alsid.eu/dcshadow-explained-4510f52fc19d</link>
    <dc:creator>webframp</dc:creator><dc:subject>windows security dcshadow activedirectory</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:fce92a71502d/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:windows"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:dcshadow"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://amarkulo.com/integrating-database-of-pwned-password-hashes-with-microsoft-ad/">
    <title>Integrating database of pwned password hashes with Microsoft AD – Amar Kulo</title>
    <dc:date>2017-08-28T01:19:19+00:00</dc:date>
    <link>https://amarkulo.com/integrating-database-of-pwned-password-hashes-with-microsoft-ad/</link>
    <dc:creator>webframp</dc:creator><dc:subject>security activedirectory passwords</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:webframp/b:b07092d2cae8/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:passwords"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://developer.atlassian.com/blog/2017/07/kubetoken/">
    <title>Kubetoken, time-limited tokens for Kubernetes cluster access - Atlassian Developers</title>
    <dc:date>2017-08-01T02:53:43+00:00</dc:date>
    <link>https://developer.atlassian.com/blog/2017/07/kubetoken/</link>
    <dc:creator>webframp</dc:creator><dc:subject>kubernetes activedirectory</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:webframp/b:99473c2cf364/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:kubernetes"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://docs.microsoft.com/en-us/windows-server/identity/ad-ds/plan/security-best-practices/best-practices-for-securing-active-directory">
    <title>Best Practices for Securing Active Directory | Microsoft Docs</title>
    <dc:date>2017-07-02T21:39:14+00:00</dc:date>
    <link>https://docs.microsoft.com/en-us/windows-server/identity/ad-ds/plan/security-best-practices/best-practices-for-securing-active-directory</link>
    <dc:creator>webframp</dc:creator><dc:subject>security activedirectory microsoft whitepaper</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:webframp/b:f04ce99b96ed/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:microsoft"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:whitepaper"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://docs.microsoft.com/en-us/windows-server/identity/securing-privileged-access/privileged-access-workstations">
    <title>Privileged Access Workstations | Microsoft Docs</title>
    <dc:date>2017-06-22T20:33:16+00:00</dc:date>
    <link>https://docs.microsoft.com/en-us/windows-server/identity/securing-privileged-access/privileged-access-workstations</link>
    <dc:creator>webframp</dc:creator><dc:subject>security windows activedirectory</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:webframp/b:9bf5113a0b5a/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:windows"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://byt3bl33d3r.github.io/automating-the-empire-with-the-death-star-getting-domain-admin-with-a-push-of-a-button.html">
    <title>Automating the Empire with the Death Star: getting Domain Admin with a push of a button // byt3bl33d3r // /dev/random &gt; blog.py</title>
    <dc:date>2017-05-30T18:53:16+00:00</dc:date>
    <link>https://byt3bl33d3r.github.io/automating-the-empire-with-the-death-star-getting-domain-admin-with-a-push-of-a-button.html</link>
    <dc:creator>webframp</dc:creator><dc:subject>activedirectory exploits automation</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:webframp/b:ab2bc61b1318/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:exploits"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:automation"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://infrastructureanonymous.com/2015/04/11/graceful-domain-controller-promotion-and-demotion-part-1/">
    <title>Graceful Domain Controller Promotion and Demotion – Part 1 | Infrastructure Anonymous</title>
    <dc:date>2017-04-08T23:33:39+00:00</dc:date>
    <link>https://infrastructureanonymous.com/2015/04/11/graceful-domain-controller-promotion-and-demotion-part-1/</link>
    <dc:creator>webframp</dc:creator><dc:subject>activedirectory automation domaincontrollers windows</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:webframp/b:7fbc4e7166f7/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:automation"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:domaincontrollers"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:windows"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://blog.scottlowe.org/2007/01/15/linux-ad-integration-version-4/">
    <title>Linux-AD Integration, Version 4 - blog.scottlowe.org - The weblog of an IT pro specializing in virtualization, storage, and servers</title>
    <dc:date>2011-05-13T03:45:28+00:00</dc:date>
    <link>http://blog.scottlowe.org/2007/01/15/linux-ad-integration-version-4/</link>
    <dc:creator>webframp</dc:creator><dc:subject>activedirectory authentication ldap linux windows</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:webframp/b:b480a7d6d402/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:authentication"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:ldap"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:linux"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:windows"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://www.google.com/support/a/bin/answer.py?hl=en&amp;answer=187202">
    <title>Windows quick start - Google Apps Help</title>
    <dc:date>2011-01-12T07:42:33+00:00</dc:date>
    <link>http://www.google.com/support/a/bin/answer.py?hl=en&amp;answer=187202</link>
    <dc:creator>webframp</dc:creator><description><![CDATA[Google Chrome MSI deployment in windows domain using Group policy ADM templates]]></description>
<dc:subject>activedirectory</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:webframp/b:f2018563e574/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://www.windowsnetworking.com/articles_tutorials/Group-Policy-Deploy-Applications.html">
    <title>Using Group Policy to Deploy Applications</title>
    <dc:date>2011-01-12T07:39:04+00:00</dc:date>
    <link>http://www.windowsnetworking.com/articles_tutorials/Group-Policy-Deploy-Applications.html</link>
    <dc:creator>webframp</dc:creator><description><![CDATA[Instructions for building an MSI and using Group Policy to publish]]></description>
<dc:subject>activedirectory deployment</dc:subject>
<dc:source>https://pinboard.in/</dc:source>
<dc:identifier>https://pinboard.in/u:webframp/b:f108845be645/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:deployment"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://davenport.sourceforge.net/ntlm.html">
    <title>The NTLM Authentication Protocol and Security Support Provider</title>
    <dc:date>2008-05-01T02:26:57+00:00</dc:date>
    <link>http://davenport.sourceforge.net/ntlm.html</link>
    <dc:creator>webframp</dc:creator><dc:subject>windows docs ntlm authentication security activedirectory</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:59aafff5b35d/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:windows"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:docs"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:ntlm"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:authentication"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:security"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="https://help.ubuntu.com/community/ActiveDirectoryWinbindHowto">
    <title>ActiveDirectoryWinbindHowto - Community Ubuntu Documentation</title>
    <dc:date>2008-04-22T18:37:26+00:00</dc:date>
    <link>https://help.ubuntu.com/community/ActiveDirectoryWinbindHowto</link>
    <dc:creator>webframp</dc:creator><description><![CDATA[sconfigure active directory authentication
]]></description>
<dc:subject>linux activedirectory samba winbind</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:d3c6118202d8/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:linux"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:samba"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:winbind"/>
</rdf:Bag></taxo:topics>
</item>
<item rdf:about="http://www.howtoforge.com/samba_ads_security_mode">
    <title>Configuring Samba 3.0 To Use The ADS Security Mode (CentOS) | HowtoForge - Linux Howtos and Tutorials</title>
    <dc:date>2008-04-21T21:41:40+00:00</dc:date>
    <link>http://www.howtoforge.com/samba_ads_security_mode</link>
    <dc:creator>webframp</dc:creator><dc:subject>activedirectory samba linux howto</dc:subject>
<dc:identifier>https://pinboard.in/u:webframp/b:58c8cde0be2c/</dc:identifier>
<taxo:topics><rdf:Bag>	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:activedirectory"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:samba"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:linux"/>
	<rdf:li rdf:resource="https://pinboard.in/u:webframp/t:howto"/>
</rdf:Bag></taxo:topics>
</item>
</rdf:RDF>