DirectoryRanger and SpecterOps focus on Microsoft identity security, spanning conditional access reauth for PIM, password spraying and AITM simulation tools, Kerberos relay detection, and expanded BloodHound attack-path mapping.
Active Directory Abuse: GenericAll Permission
Kerberos Constrained Delegation Exploitation
AS-REP Roasting is an Active Directory attack
Microsoft Active Directory Forest Recovery Guide
How to setup conditional access reauthentication policy for PIM
SpearSpray. advanced password spraying tool designed specifically for Active Directory environments.
TokenFlare. Serverless AITM Phishing Simulation Framework for Entra ID / M365
Detecting CVE-2026-20929: Kerberos Authentication Relay via CNAME Abuse
DYK BloodHound now covers Okta, GitHub, & JAMF?
This finding is one of many signals tracked across Cyber Security. The live feed updates every few hours with new authority voices, debates, and emerging ideas.
← Back to Cyber Security