Skip to main content
COSMICBYTEZLABS
NewsSecurityHOWTOsToolsTraining
StudyProjectsNewsletterHire MeAbout
Subscribe

Press Enter to search or Esc to close

News
Security
HOWTOs
Tools
Training
Study
Projects
Newsletter
Hire Me
About
RSS Feed
Reading List
Subscribe

Stay in the Loop

Get the latest security alerts, tutorials, and tech insights delivered to your inbox.

Subscribe NowFree forever. No spam.
COSMICBYTEZLABS

Your trusted source for IT intelligence, cybersecurity insights, and hands-on technical guides.

1941+ Articles
150+ Guides

CONTENT

  • Latest News
  • Security Alerts
  • HOWTOs
  • Checklists
  • Projects
  • Exam Prep

RESOURCES

  • Search
  • Browse Tags
  • Newsletter Archive
  • Reading List
  • RSS Feed

COMPANY

  • About Us
  • Contact
  • Privacy Policy
  • Terms of Service

© 2026 CosmicBytez Labs. All rights reserved.

System Status: Operational
All tags
12 articles

#Active Directory

All CosmicBytez Labs articles tagged #Active Directory, across news, security advisories, how-to guides, and projects.

  • SecurityJul 14, 2026

    CVE-2026-56155: Microsoft AD FS Access Control Flaw Enables Golden SAML Attacks

    Microsoft's July 2026 Patch Tuesday fixes CVE-2026-56155, an actively exploited privilege escalation flaw in Active Directory Federation Services. Attackers exploit overly permissive ACLs on the DKM container to forge SAML tokens and compromise hybrid identity infrastructure. CISA added it to KEV with a July 28 federal deadline.

  • NewsJun 24, 2026

    FortiBleed: 5-Stage Attack Chain Behind 110 Million Credential Heist on FortiGate Firewalls

    Deep analysis of the FortiBleed operation reveals a sophisticated five-stage credential harvesting pipeline — custom Golang sniffers, Telegram-based...

  • SecurityJun 23, 2026

    CVE-2026-11374: ManageEngine SSO Ticket Prediction Enables Unauthenticated Account Takeover

    A critical authentication vulnerability in four ManageEngine products allows unauthenticated attackers to predict SSO session tickets and take over...

  • NewsJun 2, 2026

    AI-Built Ransomware Toolkit Automates EDR Evasion and AD Discovery

    A threat actor has deployed an AI-generated ransomware attack toolkit that automates Active Directory discovery and helps evade endpoint detection and…

  • NewsMay 27, 2026

    Can You Enforce Strong Active Directory Password Rules Without Frustrating Users?

    Strong AD passwords don't have to mean frustrated users — passphrases, breached-password checks, and self-service resets balance security and usability.

  • NewsMay 26, 2026

    Microsoft: Domain Controller Lookup May Fail on Windows

    Microsoft has confirmed a new known issue affecting Windows Server 2016 systems where domain controller lookups fail after installing the KB5087537 May 2026.

  • NewsMay 11, 2026

    Why Changing Passwords Doesn't End an Active Directory

    Resetting compromised passwords is a natural first response to a breach, but it's not enough. Cached credentials, Kerberos ticket grants, and persistent...

  • HOWTOFeb 23, 2026

    Domain Controller Hardening: Securing Active Directory

    Comprehensive DC hardening guide covering tier model implementation, LDAP signing, NTLM restrictions, Kerberos hardening, AdminSDHolder, DSRM security,...

  • HOWTOFeb 9, 2026

    Active Directory Health Check: Comprehensive Diagnostic

    Run thorough health checks on Active Directory infrastructure including Domain Controllers, replication, DNS, SYSVOL, FSMO roles, and critical services...

  • ProjectFeb 9, 2026

    Build an Active Directory Penetration Testing Lab

    Create a fully functional Active Directory lab environment for practicing common attack techniques including Kerberoasting, AS-REP roasting,...

  • HOWTOFeb 8, 2026

    Configuring Windows LAPS: Automated Local Admin Password

    Deploy and configure Local Administrator Password Solution (LAPS) to automatically manage local administrator passwords across domain-joined computers,...

  • HOWTOFeb 4, 2026

    Group Policy Security Hardening for Windows Environments

    Implement CIS-aligned security baselines through Group Policy including password policies, account lockout, audit policies, restricted groups, AppLocker,...