Forestall | Emerging Threats, Advanced Solutions
Joined February 2020
- Tweets 54
- Following 0
- Followers 154
- Likes 10
22 Photos and videos
Pinned Tweet
4 Jan 2021
FSProtect - Resilient Active Directory with Ease
- Vulnerability Assessment
- AD Inventory Enumeration
- Local User & Group Enumeration
- Attack Path Finding with Graph Visualization
More Details;
fsprotect.io/
Request Demo;
info@forestall.io
youtu.be/oigaoyyRoeE
6
30
Forestall retweeted
5 Dec 2024
📌Forestall (@forestallio) Security dijital envanterlerin koruyucusu olarak öne çıkıyor.
📌Firma, şirketlerin dijital altyapılardaki kritik güvenlik açıklarını hedef alan ve siber saldırılar düzenleyen korsanlara karşı önleyici hizmetler sunuyor.
📌Forestall’ın, Kurucu Ortağı Furkan Özer, Defensehere.com’a konuştu.
🔗defensehere.com/tr/forestall…
2
6
980
8 Oct 2024
🚨 New ADCS Vulnerability: EKUwu 🚨
A newly discovered EKUwu vulnerability in Active Directory Certificate Services (AD CS) allows attackers to bypass Extended Key Usage (EKU) policies for potential privilege escalation. (1/3)
1
2
5
1,146
8 Oct 2024
If you're using version 1 certificate templates, remove them from your environment. These templates are particularly vulnerable to exploitation. Instead, upgrade to version 2 for better protection and security hardening. (2/3)
1
180
8 Oct 2024
Learn more about EKUwu and the mitigation strategies:
forestall.io/blog/en/active-…
(3/3)
1
148
8 May 2023
We are thrilled to announce that Forestall has proudly participated as an industry partner in the #LockedShields2023 exercise, organized by the NATO Cooperative Cyber Defence Centre of Excellence @ccdcoe
#LockedShields2023 #CCDCOE #Forestall #CyberSecurity
3
14
2,566
Forestall retweeted
24 May 2022
Hacktrick22'ye BRONZE sponsorlukla destek olan Forestall'a teşekkür ederiz.
#hacktrick22
@forestallio
1
4
22 Apr 2022
We participated in the biggest and most complex international live-fire cyber defense exercise #LockedShields as an industry partner again.
It was a pleasure to share our knowledge and collaborate with the @ccdcoe.
#CCDCOE #LockedShields2022
21 Apr 2022
#LockedShields2022 is a massive collaborative effort. Thank you to all our partners - you help us make #LockedShields the biggest and most complex international live-fire cyber defence exercise in the world!💪
2
11
10 Mar 2022
📣 FSProtect - Feature Spotlight
With #FSProtect, you can create complex queries to analyze Active Directory inventory in terms of both security and management.
Also, based on these queries FSProtect creates periodic reports and notifies you with mail integration.
1
2
2
10 Mar 2022
For example,
- Unprivileged accounts with local admin rights
- Service users with expired passwords
- Risky stealth admin objects
- Recently created privileged accounts
- Inactive privileged accounts
Check it out. 👇
fsprotect.io/
3 Mar 2022
Our latest blog post about Combined Attack Path Analysis clarifies the attack path management problem in large enterprises with #BloodHound and #Kangal. You can also find mitigation examples for different cases.
[EN] - forestall.io/blog/en/combine…
[TR] - forestall.io/blog/tr/combine…
2
24 Feb 2022
📣 FSProtect - Feature Spotlight
FSProtect can analyze the Resultant Set of Policies on Computers, Users, and Organizational Units with processing link order, policy enforcement, and inheritance settings. It reveals misconfigured and insecure GPO settings.
1
1
4
24 Feb 2022
With this feature, analysts can easily spot the misconfigured settings and their source GPO without the need to examine all policy objects.
Check it out. 👇
fsprotect.io/
1
17 Feb 2022
📣 FSProtect - Feature Spotlight
FSProtect can collect and combine data from multiple domains and forests. So, analysts can view the whole Active Directory infrastructure and attack paths in a single pane of glass.
Check it out. 👇
fsprotect.io/
1
2
17 Feb 2022
With this feature,
- Trust specific vulnerabilities
- Cross domain/forest group and local group memberships
- Cross domain/forest access control entries
- Cross domain/forest sessions
and many more key points which cause the enterprise-level compromise can be easily identified.
1
13 Dec 2021
Our team released a tool to combine attack paths found by Bloodhound. It makes it easy to prioritize risks on Tier-0 assets especially in large AD environments. Contribution and feedbacks are welcomed, as always.
gitlab.com/forestallio/kanga…
1
5
30 Jun 2021
🚨 #ADSecurityAlert
#PrintNightmare (CVE-2021-1675) RCE in Windows Spooler Service
Mitigation: Stop and disable the Print Spooler on every system that does not need it
#PowerShell (via Priv. User)
Stop-Service -Name Spooler -Force
Set-Service -Name Spooler -StartupType Disabled
3
13
17 Jun 2021
📢 Our flagship product #FSProtect now available in the #Azure Marketplace.
Hybrid Active Directory environment and Azure AD support is on the way.
azuremarketplace.microsoft.c…
1
6
12 Jun 2021
How to Secure Kerberos Authentication Protocol – 1
Blog: forestall.io/blog/en/kerbero…
#activedirectory #adsecurity #activedirectorysecurity
10
24
12 Jun 2021
Kerberos Protokol Güvenliği – 1
Blog: forestall.io/blog/tr/kerbero…
#activedirectory #adguvenligi #activedirectoryguvenligi
1
2 Jun 2021
#GISEC 2021 has finished!
It was a pleasure to be in here.
Thank you to all visitors, @siberkume and @GISECDUBAI
ALT Forestall in GISEC 2021
3
9