Skip to content
PwnDefend
  • Base
  • Comms Room
    • Customer Feedback
    • Company Information
    • Security Management
  • Services
    • Consulting Services
      • Enterprise Security Posture Assessment
      • Cyber Security Assurance & Security Testing Services
      • IT Security Healthchecks
      • Active Directory Assessment Services
      • Managed Remediation Services
    • Emergency Cyber Incident Response Support
    • Our Success Stories
    • Partner Services
  • Blog
  • Privacy

Active Directory Services

The heart of your identity and access management

Active directory domain services (ADDS) are at the heart of most organisations. It controls identity, access, it enables configuration management via group policy and is the centre of which your staff user experience is based. As such it is a prime target for cyber criminals. If you have an active directory environment it is either a crown jewel itself or it often is the key to your business-critical data. Your domain controllers and access needs protecting, it needs hardening, and it needs monitoring.

The current state of active directory security

Given its age and long-standing deployment as the leading global directory service you would think this means it is fairly nailed down in most organisations. Unfortunately, this is not the case, in the majority of our penetration test we are able to go from adjacent network access to full domain compromise. To help combat this, we have built a service designed to shift the ability of organisations to get insight and to enable remediation to the left! Why wait for a criminal or penetration test to identify your active directory weaknesses? Our Active Directory audit service is a rapid deployment service designed to enable you to:

  • Gain rapid visibility into your directory attack surface
  • Prepare for future mode changes such as:
    • Schema Upgrades
    • Operating System Upgrades (e.g. Windows Server 2019)
    • Active Directory Migrations
  • Enable your executive team to take action to reduce business risk
  • Guide your operations and technology management teams to harden and secure your active directory domain services

The broader picture

Phase 1Phase 2Phase 3
> Map Active Directory current state
>Forests/Domains
> DNS
> DHCP
> RADIUS
> ADCS
> Azure Connect
Identify Active Directory Vulnerabilities
> Contextualise Business Risk
> Communicate to key stakeholders
> Formulate an action/remedial plan
> Conduct configuration management
> Change managed remedial activities
> Harden the directory
> Ensure there a good user experience
> Regular external audits and vulnerability assessments

If you have concerns about the posture of active directory, if you want to identify, protect, detect, and defend against common cyber threats such as ransomware, securing active directory is a key pillar of reducing business risk, enabling assurance, compliance and helping to avoid major cyber incidents.

Operational Efficiency and Security

Our services surrounding active directory domain services and supporting services (e.g. ADCS, AD Connect (hybrid mode)) not only focus on security but also on operational efficiency and business value. We know that a well managed, well configured and securely deployed active directory are key to an enterprises IT capability.

A range of services

  • Active Directory Security Audits
  • Vulnerability Assessments & Penetration Testing
  • Active Directory Health Checks
  • Active Directory Improvement Enablement

Our team have over 38 years experiance working with Windows Domain services based on Active Directory, spanning from WIndows 2000 to Windows Server 2019. From planning, design, deployment, assurance and operations we can support your business with it’s directory services challenges.

Recent Posts

  • Microsoft Outlook Elevation of Privilege Vulnerability (CVE-2023-23397)
  • The Long Game: Persistent Hash Theft
  • The Hacker on a Train
  • Adopting an Attacker Mindset to Defend Healthcare
  • Caught: A Hacker Adventure

Recent Comments

No comments to show.

Archives

  • March 2023
  • February 2023
  • January 2023
  • December 2022
  • November 2022
  • October 2022
  • September 2022
  • August 2022
  • July 2022
  • June 2022
  • May 2022
  • April 2022
  • March 2022
  • February 2022
  • January 2022
  • December 2021
  • November 2021
  • October 2021
  • September 2021
  • August 2021
  • July 2021
  • May 2021
  • April 2021
  • March 2021
  • February 2021
  • January 2021
  • December 2020
  • November 2020
  • October 2020
  • September 2020
  • August 2020
  • July 2020
  • March 2020
  • February 2020
  • January 2020
  • October 2019
  • May 2019
  • April 2019
  • March 2019
  • February 2019
  • January 2019
  • December 2018
  • October 2018
  • September 2018
  • August 2018
  • July 2018

Categories

  • Architecture
  • Breach
  • Company News
  • CTF
  • Defence
  • Defense
  • Education
  • Fiction
  • Getting into Cyber
  • Guides
  • Hacking
  • IOT
  • Leadership
  • News
  • OSINT
  • Reviews
  • Strategy
  • Threat Intel
  • Uncategorized
  • Vulnerabilities
Copyright (c) Xservus Limited