Skip to content

Fix The Exchange!

My Tech Blog, Reborn!
  • Home
  • About

Defending Active Directory Against Cyberattacks

November 22, 2019 Josh Bryant Leave a comment

Back in April of 2016, Zaid Arafeh, Clare Kearney, and I, recorded a 7 part series for the Microsoft Virtual…

Continue Reading →

Hunting Webshells: Tracking TwoFace

September 9, 2019 Josh Bryant Leave a comment

Microsoft Exchange Servers are a high-value target for many adversaries, which makes the investigation of them during Incident Response vital.…

Continue Reading →

The ABCs of Containment, Eradication, and Recovery

August 30, 2019 Josh Bryant Leave a comment

In the physical realm, a successful hunt ends with either a kill or a capture.  While some might enjoy the thrill…

Continue Reading →

Best of Both Worlds: Blending Tactics from the Public and Private Sectors

Josh Bryant Leave a comment

Public and private enterprises face the same threats, and yet often have different approaches to defense. What if you could…

Continue Reading →

The Hitchhiker’s Guide to Data Breaches

Josh Bryant Leave a comment

The results are in, you’ve been breached. It’s officially the worst day of your career. How will you handle what…

Continue Reading →

Reducing the Exchange and Active Directory Attack Surface

February 12, 2019 Josh Bryant Leave a comment

Three years ago I wrote a document titled “Removing Exchange’s ability to impact Tier 0 and Tier 1” that was…

Continue Reading →

Filed under: Active Directory, Cybersecurity, Exchange, Exchange 2010, Exchange 2013, Exchange 2016, Exchange 2019

FixTheExchange.com is 7 years old today!

August 31, 2018 Josh Bryant Leave a comment

How fitting that 7 years after I started this blog I would relaunch it on a new platform (more on…

Continue Reading →

Hunting Webshells on Microsoft Exchange Server

May 8, 2017 Josh Bryant Leave a comment

Microsoft Exchange Servers are a high value target, making investigation of them during Incident Response vital, but where do you…

Continue Reading →

Filed under: Cybersecurity, Exchange 2013, Exchange 2016

Join me at the 2017 SANS Threat Hunting and Incident Response Summit – April 18th and 19th

December 13, 2016 Josh Bryant Leave a comment

I’ll be presenting a brand new session titled “Hunting Webshells on Microsoft Exchange Server” at the 2017 SANS Threat Hunting…

Continue Reading →

Filed under: Cybersecurity, DFIR, Exchange 2010, Exchange 2013, Exchange 2016

Exchange 2016 SP1 to run on Linux!

April 1, 2016 Josh Bryant Leave a comment

Ever since last month’s announcement that Microsoft SQL Server will be coming to Linux, quiet rumors have been floating around…

Continue Reading →

Filed under: April Fools, Exchange 2016

Post navigation

Page 1 of 8
1 2 … 8 Next →

Search

Twitter Feed

Follow @@FixTheExchange
Followers: 883
Josh M. Bryant
In reply toSean Metcalf
10 hours ago
@PyroTek3 Wait, you're not already following me? 🤔
View on Twitter
0
0
Josh M. Bryant
In reply toLesley Carhart
10 hours ago
@hacks4pancakes Walmart locations out in the Rockford area have been easy to get appointments at, but I'm not sure about insurance requirements. Signs there say it's "free", but they did still ask for my insurance.
View on Twitter
0
0
Josh M. Bryant
Josh M. Bryant @FixTheExchange
13 hours ago
2nd shot done. Officially fully #vaccinated! 💉
View on Twitter
0
5
Josh M. Bryant
In reply toSwiftOnSecurity
1 day ago
@SwiftOnSecurity I'll be re-doing the 2 post rack in my basement that came with my house soon. I just put my AV processor, amp, and Xbox One X in it. Need to wire everything up now. Waiting on a new PDU to arrive first.
View on Twitter
0
0
Josh M. Bryant
In reply toDave Kennedy
1 day ago
@HackingDave You're doing this just so you can give stronger hugs aren't you? 😜
View on Twitter
0
5
Dirk-jan
Josh M. Bryant Retweeted · Dirk-jan @_dirkjan
1 day ago
What a time to be alive... Install the Microsoft signed Hybrid Connection Manager on victim host, link it up with your Azure app, enjoy persistent access to the on-prem network from your Azure portal. Only needs https outbound to Azure and line of sight from victim to target host https://t.co/r0WhpRWcyH
View on Twitter
FixTheExchange photo
360
0

RSS You had me at EHLO…

  • Enabling Modern Auth for Outlook – How Hard Can It Be? April 19, 2021
    Since we announced in 2019 that we would be retiring Basic Authentication for legacy protocols we have been encouraging our customers to switch to Modern Authentication. Modern Authentication, based on OAuth2, has a lot of advantages and benefits as we have covered before, and we’ve yet to meet a customer who doesn’t think it is a […]
    The_Exchange_Team
  • Released: April 2021 Exchange Server Security Updates April 13, 2021
    Microsoft has released security updates for vulnerabilities found in: Exchange Server 2013 Exchange Server 2016 Exchange Server 2019 These updates are available for the following specific builds of Exchange Server: IMPORTANT: If manually installing security updates, you must install .msp from elevated command prompt (see Known Issues in update KB article). Exchange Server 2013 CU23 […]
    The_Exchange_Team
  • Native external sender callouts on email in Outlook April 2, 2021
    Overview We know that some of our customers leverage Exchange transport rules to prepend subject line or insert the message body to show the email is from external senders. This approach has a few limitations which we heard: You can end up with duplicate [External] tags in subject line if external users keep replying to […]
    The_Exchange_Team
  • Block BCC Messages to Distribution Groups in Exchange Online March 25, 2021
    We all know that email distribution groups (DGs) are great for easily sharing information or engaging in discussions with a large group of people. Whether it is a DG for business-related discussions or a DG about upcoming yard sales this weekend, DGs have been a helpful part of email life since the beginning of... well... […]
    The_Exchange_Team
  • Released: March 2021 Quarterly Exchange Updates March 16, 2021
    Today we are announcing the availability of quarterly servicing cumulative updates (CUs) for Exchange Server 2016 and Exchange Server 2019. These CUs include fixes for customer reported issues as well as all previously released security updates. Although we mentioned in a previous announcement that this release would be the final cumulative update for Exchange 2016, […]
    The_Exchange_Team
  • March 2021 Exchange Server Security Updates for older Cumulative Updates of Exchange Server March 9, 2021
    The FINAL list of all security updates (SU) released for older CU releases:3/16/2021 released update for: E2013 SP13/11/2021 released updates for: E2019 RTM, CU1 and CU2. E2016 CU8, CU9, CU10 and CU11.3/10/2021 released updates for: E2019 CU3. E2016 CU12, CU13 and CU17. E2013 CU21 and CU22.3/8/2021 released updates for: E2019 CU4, CU5 and CU6. E2016 […]
    The_Exchange_Team
  • Facebook
  • Twitter
Privacy Policy
Copyright © 2021 Fix The Exchange!