Investigating LDAP SASL with WireShark

LDAP SASL, or Simple Authentication and Security Layer for LDAP, is a framework providing a unified way to authenticate clients to LDAP servers using various security mechanisms, such as Kerberos, GSSAPI, or PLAIN.

GSSAPI, or the Generic Security Services API, is a standardized framework that provides a way for applications to access security services, like authentication, in a mechanism-independent manner.

Installing ldp.exe

(more…)

Joining a Windows 10 computed to a Domain

Win + R, control:

(more…)

Investigating Kerboros with kinit and Wireshark

On the domain controller:

nslookup -q=SRV _kerberos._tcp.other.local
Server:  localhost
Address:  127.0.0.1

_kerberos._tcp.other.local      SRV service location:
          priority       = 0
          weight         = 100
          port           = 88
          svr hostname   = 7-dev-de-dc16.other.local
7-dev-de-dc16.other.local       internet address = 10.15.7.16
(more…)

Predatory 2.28% hourly interest fee on Binance

Hourly interest has grown in 100 times (2.28310500 / 0.02283100):

so my hourly interest fee = 717.95000000 * 2.28310500 / 100 * 1.5 = 24.5 USDT

(more…)

Capturing LDAP traffic with WireShark

Select network interface:

(more…)

Active Directory Tombstones

A tombstone is a container object consisting of the deleted objects from AD. These objects have not been physically removed from the database. When an AD object, such as a user is deleted, the object technically remains in the directory for a given period of time; known as the Tombstone Lifetime.

Seeing with ldp.exe

Go to Options -> Controls

(more…)

How does replication work in Active Directory

There is a counter in RootDSE:

(more…)

Active Directory Global Catalog

(more…)

Configuring Reverse Reverse DNS Lookup zone

Click New Zone… in DNS Manager and click Next button until you see this page:

(more…)

Configuring Active Directory Trust Relationships

I created two domains and set up Conditional Forwarders on the both Domain Controllers:

(more…)