Audit of a Windows client from your IT landscape for common vulnerabilities and misconfigurations.

• Security settings in AV/EDR, firewall, proxy, system components, etc.
• Options for local privilege escalation
• Possibilities for code execution
• Password policy checks
• Hardening measures like disk encryption, Credential Guard, DMA Protection
• ...

How does it work? You send me the device along with a normal and admin account. Tests are performed and documented. The device is returned with a report.

Example Report

Audit of the Active Directory for critical vulnerabilities and misconfigurations as well as low hanging fruits.

• Active Directory Certificate Services
• Group Policies
• Internal AD information
• MitM attacks
• GPPs and Logon Scripts
• Attackable services
• Lateral Movement and Privilege Escalation paths
• SQL Server configurations
• Password-related tests
• Kerberoasting and AS_REP Roasting
• SCCM
• ...

How does it work? Integration via drop box, systems virtualized, remote access via Tailscale VPN. Tests are performed, documented, and report provided.

Example Report

Evaluating the quality of passwords used.

Checks password policies, legacy issues, and potential blacklist entries.

How does it work? We exchange the ntds.dit file from your AD. Hashed passwords are analyzed with wordlist and brute-force attacks. Results include percentages, distributions, and plaintext passwords.

Example Report

Advice on IT security, training in Offensive Tooling, and guidance on countermeasures based on real attack experience.