Hackers are targeting organizations relying on Microsoft Active Directory Federation Services (ADFS) by setting up fake login portals that mimic legitimate corporate authentication pages. Security ...
This tool was quickly put together to prove the concept of altering a user account that is entered into a username field in the ADFS portal authenticaiton, and transforming it into a different ID. A ...
In a previous commit, I showed you how you can Clone Citrix Storefronts and incorporate custom PHP pages to capture credentials. Today, I'd like to show you the same concept, but this time we'll be ...
During red team engagements over the last few years, I’ve been curious whether it would be possible to authenticate to cloud services such as Office365 via a relay from New Technology Lan Manager ...
A help desk phishing campaign targets an organization's Microsoft Active Directory Federation Services (ADFS) using spoofed login pages to steal credentials and bypass multi-factor authentication (MFA ...
Microsoft on Monday announced some Azure Active Directory enhancements to help organizations shift away from using Active Directory Federation Services (ADFS). Most of the enhancements were described ...
It’s no secret that Microsoft have been trying to move customers away from ADFS for a while. Short of slapping a “deprecated” label on it, every bit of documentation I come across eventually explains ...
As long as we’ve had passwords, people have tried to guess them. In this blog, we’re going to talk about a common attack which has become MUCH more frequent recently and some best practices for ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback