Information security is complex, but it doesn’t need to be. QOMPLX Knowledge is an on-going blog series that provides vital information and insights about critical cyber security concepts, including common malicious behavior and attacks that QOMPLX analysts encounter in their customer engagements. QOMPLX Knowledge blog posts explain key information security concepts in plain language. They also explore the information security trends that drive malicious campaigns, providing useful information on threat detection and incident response.
See below for a links to articles in this ongoing series.
- Golden Ticket Attacks Explained
- Silver Ticket Attacks Explained
- Responding to a Golden Ticket Attack
- DCSync Attacks Explained
- DCShadow Attacks Explained
- Pass-the-Ticket Attacks Explained
- Kerberoasting Attacks Explained
- Responding to a Silver Ticket Attack
- Kerberos Delegation Attacks Explained
- Fundamentals of Active Directory Trust Relationships
- 10 Active Directory Health Checks You Should Know
- NTLM Relay Attacks Explained
- Understanding Pass The Hash Attacks
- Understanding OverPass The Hash Attacks
- 5 Ways Attackers Bypass Microsoft Azure ATP
- What Are AS-REP Roasting Attacks?
- Detecting Lateral Movement Using Windows Event Logs
- 9 Reasons To Consolidate Active Directory