Skip to content

Fix The Exchange!

My Tech Blog, Reborn!
  • Home
  • About

Defending Active Directory Against Cyberattacks

November 22, 2019 Josh Bryant Leave a comment

Back in April of 2016, Zaid Arafeh, Clare Kearney, and I, recorded a 7 part series for the Microsoft Virtual…

Continue Reading →

Hunting Webshells: Tracking TwoFace

September 9, 2019 Josh Bryant Leave a comment

Microsoft Exchange Servers are a high-value target for many adversaries, which makes the investigation of them during Incident Response vital.…

Continue Reading →

The ABCs of Containment, Eradication, and Recovery

August 30, 2019 Josh Bryant Leave a comment

In the physical realm, a successful hunt ends with either a kill or a capture.  While some might enjoy the thrill…

Continue Reading →

Best of Both Worlds: Blending Tactics from the Public and Private Sectors

Josh Bryant Leave a comment

Public and private enterprises face the same threats, and yet often have different approaches to defense. What if you could…

Continue Reading →

The Hitchhiker’s Guide to Data Breaches

Josh Bryant Leave a comment

The results are in, you’ve been breached. It’s officially the worst day of your career. How will you handle what…

Continue Reading →

Reducing the Exchange and Active Directory Attack Surface

February 12, 2019 Josh Bryant Leave a comment

Three years ago I wrote a document titled “Removing Exchange’s ability to impact Tier 0 and Tier 1” that was…

Continue Reading →

Filed under: Active Directory, Cybersecurity, Exchange, Exchange 2010, Exchange 2013, Exchange 2016, Exchange 2019

FixTheExchange.com is 7 years old today!

August 31, 2018 Josh Bryant Leave a comment

How fitting that 7 years after I started this blog I would relaunch it on a new platform (more on…

Continue Reading →

Hunting Webshells on Microsoft Exchange Server

May 8, 2017 Josh Bryant Leave a comment

Microsoft Exchange Servers are a high value target, making investigation of them during Incident Response vital, but where do you…

Continue Reading →

Filed under: Cybersecurity, Exchange 2013, Exchange 2016

Join me at the 2017 SANS Threat Hunting and Incident Response Summit – April 18th and 19th

December 13, 2016 Josh Bryant Leave a comment

I’ll be presenting a brand new session titled “Hunting Webshells on Microsoft Exchange Server” at the 2017 SANS Threat Hunting…

Continue Reading →

Filed under: Cybersecurity, DFIR, Exchange 2010, Exchange 2013, Exchange 2016

Exchange 2016 SP1 to run on Linux!

April 1, 2016 Josh Bryant Leave a comment

Ever since last month’s announcement that Microsoft SQL Server will be coming to Linux, quiet rumors have been floating around…

Continue Reading →

Filed under: April Fools, Exchange 2016

Post navigation

Page 1 of 8
1 2 … 8 Next →

Search

Twitter Feed

Follow @@FixTheExchange
Followers: 776
🥝 Benjamin Delpy
Josh M. Bryant Retweeted · 🥝 Benjamin Delpy @gentilkiwi
12 hours ago
I wanted to sign tickets manually, so a new #mimikatz 🥝release to play with Azure AD PRT

Here I dumped PRT a some keys from another user, despite the TPM... then generate a ticket on another computer, to access Azure data of the user...

> https://t.co/Wzb5GAfWfd

Pass-the-PRT https://t.co/1tJSAOab3W
View on Twitter
FixTheExchange photo
70
0
Josh M. Bryant
In reply toLina
19 hours ago
@d0rkph0enix https://t.co/iawRY0yRyC
View on Twitter
FixTheExchange photo
0
2
Josh M. Bryant
In reply toLina
2 days ago
@d0rkph0enix @realmikeblair https://t.co/r5yPuUzgkx
View on Twitter
FixTheExchange photo
0
1
Josh M. Bryant
In reply toPatrick (Pigeon Toady)
2 days ago
@PigeonToadyBruh @d0rkph0enix They don't come with it, but I've been told the AMG driving school is really good.

These are very well behaved for the amount of power they have. Handling and braking are amazing.
View on Twitter
0
1
Josh M. Bryant
In reply toLina
2 days ago
@d0rkph0enix Didn't even know you had to do that, mine came that way. 🤣
View on Twitter
0
2
Josh M. Bryant
In reply toRoger Ofarril
2 days ago
@RogerOfarril @d0rkph0enix https://t.co/a2SiuANNV9
View on Twitter
FixTheExchange photo
0
2

RSS You had me at EHLO…

  • Customizable Tenant-level Recipient Limits August 6, 2020
    Controlling the number of recipients per message that your users can send to is one of several measures email admins can use to help curtail the risk of email abuse and spamming from compromised accounts. Earlier this year the Exchange Online Transport team introduced customizable Recipient Limits in Exchange Online. With it you can customize […]
    The_Exchange_Team
  • Modern HCW (Hybrid Agent): troubleshooting like a pro July 31, 2020
    Most of you are probably familiar with Classic Hybrid Deployments that are automatically configured through classic option in the Hybrid Configuration Wizard (HCW).  In this blog post we will focus on Modern Hybrid Configuration (aka Modern Hybrid Agent) and specifically, Agent troubleshooting. The 2 mentioned flavors of hybrid deployments are: A comparison of the hybrid […]
    The_Exchange_Team
  • Controlling Outlook for Android data on wearable devices July 29, 2020
    Outlook for Android supports Android and Tizen wearable technology. When the Outlook app is installed on the wearable, the user can receive message notifications and event reminders, interact with messages, and view daily calendars. For data to synchronize to the Outlook app installed on Android or Tizen wearable devices, the wearable must be connected to […]
    The_Exchange_Team
  • Basic Authentication and Exchange Online – July Update July 28, 2020
    Today we are pleased to announce some new changes to Modern Authentication controls in the Microsoft 365 Admin Center, exposing simpler options for customers to manage both Modern and Basic Authentication requirements within their organizations.  Available from within the Admin Center under Settings > Org Settings > Modern Authentication (alternatively, search for “Modern Authentication” in […]
    The_Exchange_Team
  • Coming Soon: Outlook for Android support for Android 10 device password complexity July 24, 2020
    At the end of August, Outlook for Android will roll out support for the new device password complexity functionality included within Android 10 and later. With each operating system version release, Google includes new APIs in which apps can target for supporting new functionality offered in the operating system release. Until apps target those APIs, […]
    The_Exchange_Team
  • Book a workspace in Outlook July 20, 2020
    Update - July 21st 2020 - We're re-evaluating the method used for setting up workspaces, and will update this blog soon. Imagine you could book an office to work anywhere in the world. Now imagine this could be done in Outlook. Well, we have built a feature to let you do that! We have built […]
    The_Exchange_Team
  • Facebook
  • Twitter
Privacy Policy
Copyright © 2020 Fix The Exchange!