Exchange 2019:- ProxyToken Exploit
In three of my previous blog posts, we looked at exploiting unpatched/vulnerable Exchange servers with “ProxyLogon”, “ProxyShell” and “ProxyNotShell”. As the exploit lists keep growing, we will look at the…
Windows Server 2022:- Bypassing Windows Defender with Nim
This article is about a YouTube video by “Tyler Ramsbey” that I used in my own environment to get a Reverse Shell from a Windows 2022 Server that is fully…
Exchange 2019:- Install the November 2023 Security Update (KB5032146)
Microsoft released the November 2023 Security Update (SU) for Exchange Server 2019. To read about this update and more, you can head over to the URL below: https://techcommunity.microsoft.com/t5/exchange-team-blog/released-november-2023-exchange-server-security-updates/ba-p/3980209 In this…
Exchange 2019:- ECP_DLP_Policy Exploit
I have been covering some of the exploits in Exchange Server in a few of my blog posts and wanted to highlight the fact that I tested another one which…
Exchange 2019:- ProxyNotShell Exploit
In two of my previous blog posts, we looked at exploiting unpatched/vulnerable Exchange servers with “ProxyLogon” and “ProxyShell”. As the exploit lists keep growing, we will look at the “ProxyNotShell”…
Exchange 2019:- ProxyShell Exploit
In my previous blog post we looked at the Proxy Logon Exploit where several CVE’s could be used to exploit an Exchange Server. In this article we will look at…
Exchange 2019:- ProxyLogon Exploit
Many of us know the HAFNIUM attacks that took place a little while ago and many Exchange servers were compromised. The sad part is that many Exchange Servers are still…
Exchange 2019:- Using IISCrypto 3.3 with Exchange 2019 CU13
A few years back I wrote a blog post for Exchange 2016 where we used IISCrypto to remove Protocols, Ciphers, Hashes, Key Exchanges etc. that posed a security risk externally…
Exchange 2019:- Brute forcing OWA to gain access to user accounts
We all know that end users hate complex passwords and having to change passwords often leads them to use the same password but add a number or character at the…
Exchange 2016/2019:- Be aware of information disclosure with NTLM Authentication
Performing some tests against my lab Exchange servers, I noticed that Shodan.io revealed information. Take note that attackers also use Shodan.io when enumerating targets. After digging further with NMAP and…