Skip to content

Fix The Exchange!

My Tech Blog, Reborn!
  • Home
  • About

Defending Active Directory Against Cyberattacks

November 22, 2019 Josh Bryant Leave a comment

Back in April of 2016, Zaid Arafeh, Clare Kearney, and I, recorded a 7 part series for the Microsoft Virtual…

Continue Reading →

Hunting Webshells: Tracking TwoFace

September 9, 2019 Josh Bryant Leave a comment

Microsoft Exchange Servers are a high-value target for many adversaries, which makes the investigation of them during Incident Response vital.…

Continue Reading →

The ABCs of Containment, Eradication, and Recovery

August 30, 2019 Josh Bryant Leave a comment

In the physical realm, a successful hunt ends with either a kill or a capture.  While some might enjoy the thrill…

Continue Reading →

Best of Both Worlds: Blending Tactics from the Public and Private Sectors

Josh Bryant Leave a comment

Public and private enterprises face the same threats, and yet often have different approaches to defense. What if you could…

Continue Reading →

The Hitchhiker’s Guide to Data Breaches

Josh Bryant Leave a comment

The results are in, you’ve been breached. It’s officially the worst day of your career. How will you handle what…

Continue Reading →

Reducing the Exchange and Active Directory Attack Surface

February 12, 2019 Josh Bryant Leave a comment

Three years ago I wrote a document titled “Removing Exchange’s ability to impact Tier 0 and Tier 1” that was…

Continue Reading →

Filed under: Active Directory, Cybersecurity, Exchange, Exchange 2010, Exchange 2013, Exchange 2016, Exchange 2019

FixTheExchange.com is 7 years old today!

August 31, 2018 Josh Bryant Leave a comment

How fitting that 7 years after I started this blog I would relaunch it on a new platform (more on…

Continue Reading →

Hunting Webshells on Microsoft Exchange Server

May 8, 2017 Josh Bryant Leave a comment

Microsoft Exchange Servers are a high value target, making investigation of them during Incident Response vital, but where do you…

Continue Reading →

Filed under: Cybersecurity, Exchange 2013, Exchange 2016

Join me at the 2017 SANS Threat Hunting and Incident Response Summit – April 18th and 19th

December 13, 2016 Josh Bryant Leave a comment

I’ll be presenting a brand new session titled “Hunting Webshells on Microsoft Exchange Server” at the 2017 SANS Threat Hunting…

Continue Reading →

Filed under: Cybersecurity, DFIR, Exchange 2010, Exchange 2013, Exchange 2016

Exchange 2016 SP1 to run on Linux!

April 1, 2016 Josh Bryant Leave a comment

Ever since last month’s announcement that Microsoft SQL Server will be coming to Linux, quiet rumors have been floating around…

Continue Reading →

Filed under: April Fools, Exchange 2016

Post navigation

Page 1 of 8
1 2 … 8 Next →

Search

Twitter Feed

Follow @@FixTheExchange
Followers: 773
Josh M. Bryant
In reply toViking Sec
14 hours ago
@Viking_Sec I have a ton of oregano and mint taking over the landscaping outside my home office window. Came with the house. 🤣
View on Twitter
0
0
Josh M. Bryant
In reply toHuy
3 days ago
@DebugPrivilege @camsoper does.
View on Twitter
0
1
Josh M. Bryant
In reply toChristopher Ward
4 days ago
@CDubbsDT Location is completely optional for check-ins on Untappd, as are photos, although both are incentivized with badges. Seems like it should be common sense to avoid taking a photo of your CAC leaning up against your beer and checking into the Pentagon beer garden. 🙄
View on Twitter
0
0
Josh M. Bryant
In reply toChristopher Ward
4 days ago
@CDubbsDT This is why we can't have nice things.
View on Twitter
0
2
Josh M. Bryant
Josh M. Bryant @FixTheExchange
5 days ago
Did so much with the long weekend.
Calculated lateral movement potential between a few hundred thousand nodes.
Cleared several acres of overgrown brush.
Killed a bunch of poison ivy.
Mowed.
Put down a truckload of mulch.
Cooked a lot of food.
So much more left to do.
View on Twitter
0
5
Josh M. Bryant
In reply toⓉⒸ
5 days ago
@TC_Johnson Shouldn't there be 2 of them, and a microphone? 😉
View on Twitter
0
2

RSS You had me at EHLO…

  • Announcing OAuth Support for POP in Exchange Online May 28, 2020
    Just a couple of weeks or so after our announcement of OAuth support for IMAP and SMTP Auth in Exchange Online, today we’re happy to be able to confirm OAuth support for POP is also now available in Exchange Online. Application developers who have built apps that send, read or otherwise process email using these […]
  • Demystifying and troubleshooting hybrid mail flow: when is a message internal? May 27, 2020
    When we need to deploy a hybrid scenario, the first thing that comes to mind is running the Hybrid Configuration Wizard. Indeed, HCW is enough to make the magic happen between Exchange Online (EXO) and Exchange on-premises. But, if you want to pull back the curtain on the mail flow and connectors, this post is […]
  • Understanding and troubleshooting Out of Office (OOF) replies May 22, 2020
    Out of Office replies can sometimes be a bit of a mystery to people; how do they work? What do you do if they don’t work? In this blog post, we will discuss the bits and pieces of Out of Office and some of the main reasons why an Out of Office (aka. OOF) reply […]
  • On provisioning mailboxes in Exchange Online when in Hybrid May 20, 2020
    In this blog post we will cover a very common scenario faced by customers who have moved all of their mailboxes from on-premises to the cloud. How do you create mailboxes directly in the cloud? The task might seem simple, but in support we see a fair amount of confusion around it. And there are […]
  • TechNet Gallery retirement and Exchange Team contributions May 19, 2020
    You might (or might not) be aware that the TechNet Gallery site is going to be retired soon (currently planned for June 2020). Over the years, we (on this blog) have published many different script samples and post related files there. We would then link to the Gallery page to download the actual script or […]
  • How to configure the new Room Finder in Outlook May 15, 2020
    Did you hear of room lists? What is a room list? A room list is a collection of room mailboxes. Room lists are specially marked distribution groups that you can also use the same way you use ‘regular’ distribution groups. You can only create room lists using the Exchange Management Shell. This article goes over […]
  • Facebook
  • Twitter
Privacy Policy
Copyright © 2020 Fix The Exchange!