by Darrenlux23dWoldVent | Sep 30, 2025 | Semperis
Editor’s note This scenario is part of a series of examples demonstrating the use of EntraGoat, our Entra ID simulation environment. You can read an overview of EntraGoat and its value here. Certificate Bypass Authority–Root Access Granted EntraGoat Scenario 6 details...
by Darrenlux23dWoldVent | Sep 30, 2025 | Semperis
Editor’s note This scenario is part of a series of examples demonstrating the use of EntraGoat, our Entra ID simulation environment. You can read an overview of EntraGoat and its value here. Graph Me the Crown (and Roles) EntraGoat Scenario 2 demonstrates how...
by Darrenlux23dWoldVent | Sep 30, 2025 | Semperis
Given the relentless surge in identity-related cyberattacks, organizations face more pressure than ever to safeguard their most critical infrastructure: identity systems powered by Active Directory (AD). Announced at Cohesity’s Catalyst1 event, a new partnership...
by Darrenlux23dWoldVent | Jan 20, 2025 | Semperis
Unless you avoid cybersecurity news, you know that Active Directory (AD)—the primary identity system for 90% of organizations worldwide—is now the #1 target for cyberattackers. AD controls authentication and access to applications and services across the organization....
by Darrenlux23dWoldVent | Jan 18, 2025 | Semperis
LDAPNightmare, recently published by SafeBreach Labs, is a proof-of-concept exploit of a known Windows Lightweight Directory Access Protocol (LDAP) denial-of-service vulnerability (CVE-2024-49113). What is LDAPNightmare, how dangerous is this exploit, and how can you...
by | Dec 24, 2024 | Semperis
For organizations of any size, managing hybrid identity security across on-premises and cloud environments can be challenging, and Purple Knight has long been trusted to expose risky misconfigurations. Lightning Intelligence, a SaaS security posture assessment,...