The Wolf

Hasain Alshakarti is an acknowledged security expert and computer industry speaker, he has been speaking at MS Ignite, TechED US, TechED Europe, and TechDays as well as other events and conferences across the world. Besides being a very popular instructor for the last 25 years Hasain is specially focusing Incident response, Red Teaming, Blue Teaming, Security Assessment, Network Security, Identity and Access and PKI, helping customers understand and implement security measures. Hasain has a background as a developer and works closely with developers to help them understand security demands and realize in applications and system without losing functionality and usability. He is member of the TRUESEC Cyber Security and Infrastructure Team, and a recipient of the Microsoft Most Valuable Professional (MVP) Award in Datacenter and Enterprise Security.

Posts by The Wolf:

Mitigating NTLM Relay Attacks on Active Directory Certificate Services (AD CS) – ADV210003 – KB5005413 – PetitPotam

Updates 2021-08-06 – Added recommendations to protect DC’s This advisory is related to the recent Certified Pre-Owned whitepaper discussing the possible abuse of the Active Directory Certificate Services AD CS role in combination with Credentials Relay Attacks such as MS-RPRN and the more recent MS-EFSRPC aka PetitPotam. The MS-EFSRPC protocol can be used to coerce […]

25 Jul 2021 in Cyber Security

HiveNightmare a.k.a. SeriousSam Local Privilege Escalation in Windows – CVE-2021-36934

A new Local Privilege Escalation (LPE) has been discovered in Windows 10/11. The vulnerability, named HiveNightmware a.k.a. SeriousSam, is a result of a “bad” ACL set on the registry hive files in the C:\Windows\System32\Config folder. This allows regular users read access to the SAM, SYSTEM, SECURITY, and other critical files. This means that a regular […]

20 Jul 2021 in Cyber Security