I didn't know this feature exist and I always wondered about Srv Accounts vulnerabilities but never investigated further. Thanks!
@CQUREAcademy3 жыл бұрын
We're happy to help! :)
@mohamedwahieb474 Жыл бұрын
Thanks for informative video
@vsy7888 Жыл бұрын
very good tutorial - thank you for sharing!
@sunilchauhan97946 жыл бұрын
As always, Very Informative! Thanks, Paula!
@AbreTuMente2 жыл бұрын
Great video!!! thank you so much!!!
@CQUREAcademy2 жыл бұрын
Thank you!
@yanivshalomhelp3579 Жыл бұрын
Love U. Thanks
@fmkabuvideos6 жыл бұрын
Interesting, I look forward to learning more.
@3r1ck875 жыл бұрын
Thanks, excellent video.
@mohammedmustaqueem83625 жыл бұрын
Thanks!
@zs29592 жыл бұрын
Hi, when you first run regedit, security hive was not expandable so you did not see the secrets but after the gsma, hive was changed. I was missing something ? thank you
@user-le4bi6bm9k4 жыл бұрын
内容很棒,相见恨晚
@DannyNilsson2 жыл бұрын
When trying to dump LSAA og access the data, windows defender will trigger alerts.
@chrisgaming53065 жыл бұрын
OMG, TY TY TY TY. Life saver.
@MOFITECH2 ай бұрын
Good article Paula! Where can we find the CQ Secrets Dumper? The link doesn't point to a downloadable file. Thanks.
@CQUREAcademy2 ай бұрын
Hi, thank you for your kind words! We're glad you enjoyed the article. 🦝 You can find the CQ Secrets Dumper on our website: cqureacademy.com/blog/cqsecretsdumper/. In case of any questions let us know!
@osmaster33276 жыл бұрын
Great. Thank a lot
@jarves12313 жыл бұрын
The KDS root key is not replicated to other domain controlles?
@michalb13893 жыл бұрын
super Paula
@CQUREAcademy3 жыл бұрын
Thank you!
@rahulpradhan25683 жыл бұрын
Hey Paula - All the tools on your sites are being flagged as virus/Malware etc by antivirus .
@CQUREAcademy3 жыл бұрын
A lot of our tools publicly available are flagged as malicious by AV engines. It is nothing to worry about, but anyway it is always advisable to run such tools, demo executables or scripts in an isolated test virtual machine. Our things are frequently flagged as malicious, because in our tools while playing with Windows security, we are sometimes performing operations similar to malware. Therefore behaviour pattern of such executables often looks very similar to malware. If you would like to complete the assessment, please whitelist some folder within your virtual machine or completely disable the anti-virus. Also, be sure NOT to use WinZip for our extracting files.
@rahulpradhan25683 жыл бұрын
@@CQUREAcademy Thanks for the info. Testing it in my lab environment. Appreciate your quick response !!
@InayetHadi5 жыл бұрын
When a Powershell script needs admin rights to run how would you designate the service account in the powershell script that requires admin privilage?
@EugenNiedaszkowski7 жыл бұрын
Wow! That was neat! Paula, may I ask you to tell more about SPNs in your next video?
@pdc03023 жыл бұрын
Thanks Paula! How do you define multiple server on the "New-ADServiceAccount -PrincipalsAllowToRetrieveManagedPassword" statement? do you use comma or semicolons?
@CQUREAcademy3 жыл бұрын
That's such a great question! The parameter is an array, you can use comma separated values: Set-ADServiceAccount [-Identity] ITFarm1 -PrincipalsAllowedToRetrieveManagedPassword Host1$,Host3$ but best practice is to use group membership Set-ADServiceAccount [-Identity] ITFarm1 -PrincipalsAllowedToRetrieveManagedPassword AD_Group_Name
@pdc03023 жыл бұрын
@@CQUREAcademy Thank you!
@tamilankalaigal28 ай бұрын
@@CQUREAcademy wat is [-Identity] ITFarm1
@networkdude13323 жыл бұрын
Not to sound sexist: But it is so much more pleasant watching a beautiful IT Babe!