Everybody obsesses about Domain Admin and DC security, for obvious reasons. But if a capable espionage-focused attacker can get to Exchange that's gold: -value of emails themselves, of course -external C2 possible that few monitoring for -wicked host-to-host internal C2 possible
-
-
Yeah, "legacy" was the wrong word there. What I was really getting at was all environments where deliberate steps hadn't been taken to harden against Exchange elevation. Although older, genuine legacy environments may well have elevated rights exposed to an even greater extent.
-
Don't underestimate the importance of what you get with a default install! :)
- 1 more reply
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.