by edward | Nov 6, 2023 | Exchange 2016, Exchange 2013, Exchange 2019, NMAP, NMAP Scripting Engine, NSE
Over the past few years, Microsoft Exchange Server has come under heavy attack and with each new Cumulative Update (CU) and Security Update (SU), CVE’s are addressed and closed. The problem comes in when organisations do not patch servers (as mentioned in a few...
by edward | Aug 18, 2023 | Exchange 2019
Microsoft released V2 of the August Security Update for Exchange 2019 which includes an extra step that addresses a vulnerability. In this blog post, we will cover the following: Quick overview of Exchange 2019 CU13 install Quick overview of applying the Security...
by edward | Jul 22, 2023 | Exchange 2016
We all know about the ongoing attacks on Exchange Servers and it is vitally important that you keep up-to-date with patching of your environments, even if it is standalone servers that are just performing management functions. Each Cumulative update (CU) and Security...
by edward | Jul 22, 2023 | Active Directory, ESET File Security, Mimikatz, Tehtris EDR
I was testing the Invoke-Mimikatz script on my Windows 2016 Server and while it is straight forward to bypass Windows Defender, I thought of taking the challenge and seeing if I can bypass ESET on the same server. If you try and copy the file from a zip file for...
by edward | Apr 18, 2023 | Windows Insider Preview, Windows 11, Windows 11 Insider Preview
For a while now I have been doing a lot of work behind the scenes on looking into the security of Windows 11 and using Intune (Endpoint Security) and Defender to not only report on issues but also bring to light how important it is to patch, this not only includes...