Directory Insights in 10 Minutes Reversible Password Encryption

https://is1-ssl.mzstatic.com/image/thumb/Podcasts221/v4/bd/e6/f3/bde6f3ba-1036-604a-d45f-058c1131c2aa/mza_13819881962082944253.jpg/600x600bb.jpg

Guardians of the Directory

Guardian of the Directory

18 episodes

5 days ago

Guardians of the Directory is the podcast for everything Active Directory security, management, and recovery. Join us as we dive into best practices, recent security events, listener Q&As, and expert interviews to equip you with the skills needed to protect your AD environment. Whether you’re an IT pro or a cybersecurity enthusiast, each episode delivers actionable insights to help you stay informed and secure. Become a Guardian of the Directory and tune in to strengthen your defenses!

Technology

RSS

All content for Guardians of the Directory is the property of Guardian of the Directory and is served directly from their servers with no modification, redirects, or rehosting. The podcast is not affiliated with or endorsed by Podjoint in any way.

Technology

https://d3t3ozftmdmh3i.cloudfront.net/staging/podcast_uploaded_nologo/42659774/cf4639657df8995a.jpg

Directory Insights in 10 Minutes Reversible Password Encryption – A Hidden Risk

Guardians of the Directory

4 minutes 33 seconds

7 months ago

Directory Insights in 10 Minutes Reversible Password Encryption – A Hidden Risk

Summary:

In this episode of Directory Insights in 10 Minutes, we dive into a critical yet often overlooked Active Directory misconfiguration—Allowing Password Storage with Reversible Encryption.

This setting can override password policies, leaving user credentials exposed to plaintext extraction through common attacker tools like Mimikatz and DCSync.

🚨 Key Takeaways:
✅ How this misconfiguration bypasses domain password policies
✅ How attackers can extract plaintext passwords using AD credential dumping tools
✅ How to find vulnerable accounts using PowerShell
✅ How to remediate and secure your AD environment