Want to learn about Active Directory security? Start with these blogs 👇
đź“ť Original Twitter Thread: https://twitter.com/drunkrhin0/status/1564757368168099840
1. adsecurity.org
Often the first place I look for AD security info. Some say blog I say knowledge-base. it’s an absolute wealth of knowledge and although some of the blog entries are older contain incredibly valuable information. (2/8)
Author: Trimarc Security
2. Hackndo Blog
AD security can be overwhelming. Although I wish I found his blog sooner Pixis does an incredible job at explaining common AD security principles and attacks including Kerberoasting, and NTLM relay.
Author: HackAndDo
Read this entire blog!
3. Dirk-Jan’s Blog
Dirk is another one of those names that you immediately associate to AD security. He regularly discusses AD as well as Azure AD security. His tools are invaluable and you’ll likely end up using a few of them out in the field. (4/8)
Author: Dirk-Jan
4. M365internals
@DebugPrivilege gained popularity rapidly in the AD security space. His depth of knowledge and extreme attention to detail was quickly noticed. He also blogs about other MS stack products.
Author: DebugPrivilege
5. SpectreOps Blog
You can’t talk about AD security without talking about the SpecterOps team. Bloodhound aside…the team regularly dives into AD and Microsoft attacks, prevention and hunting techniques.
Author: Specterops
6. Group Policy Blog
https://sdmsoftware.com/group-policy-blog/
He has the handle [@groupolicyguy]((https://twitter.com/grouppolicyguy) for good reason. Darren pioneered GPO! Regularly what some sysadmins may think is Active Directory itself. Darren breaks down the fundamentals of GPO and the part it plays in AD.
Author: Group Policy Guy