Netwrix Blog | Insights for Cybersecurity and IT Pros

This post first appeared on blog.netwrix.com and was written by Dirk Schrader.
Credential stuffing is a type of cyberattack where attackers use stolen username and password combinations, often obtained from previous data breaches, to gain unauthorized access to multiple online accounts. The attacker automates the process of trying these combinations across various websites, hoping that users have reused the same login details. Credential Stuffing vs. Password Stuffing: … Continued

This post first appeared on blog.netwrix.com and was written by Jonathan Blackwell.
Each new PowerShell version introduces new features, performance enhancements, and security improvements. Upgrading empowers you to take advantage of these advancements. It also ensures compatibility with updated APIs, libraries, and frameworks and provides access to contributions from a vibrant community committed to knowledge sharing and best practices. This article explains the differences between the traditional … Continued

This post first appeared on blog.netwrix.com and was written by Dirk Schrader.
Many common password attack methods are quite straightforward — much like trying various physical keys to open the lock on a door. For example, in brute force attacks, adversaries systematically guess passwords until they find the correct one. Or instead of simply guessing, they can use a list of username/password combinations leaked from other breaches … Continued

This post first appeared on blog.netwrix.com and was written by Jonathan Blackwell.
Introduction to Sending Emails with PowerShell PowerShell is an indispensable tool for task automation, configuration management, system monitoring and querying data. But you can also send email with PowerShell. For instance, PowerShell scripts can monitor systems and post email alerts for specific events, resource constraints or completed tasks. However, it’s critical to ensure that emails … Continued

This post first appeared on blog.netwrix.com and was written by Jonathan Blackwell.
Windows PowerShell and command prompt (CMD) are both essential command-line interface tools for Windows administrators, allowing them to execute commands, manage system processes and automate administrative tasks. While CMD has been a foundational component of Windows since the MS-DOS era, PowerShell has emerged as a more advanced and powerful scripting language, enhancing system management and … Continued

This post first appeared on blog.netwrix.com and was written by David Metzgar.
OAuth is an authorization protocol that grants third-party websites or applications limited access to a user’s information (like their email or photos) — without sharing their logon credentials. For example, suppose you want to sign up for an app to help you track your fitness goals. Through the power of OAuth, you may have the … Continued

This post first appeared on blog.netwrix.com and was written by James Anderson.
Managing change for in-house applications and platforms is crucial for maintaining stability, security, and accountability. Unlike managing changes at the device level, working with applications requires a more comprehensive strategy. Let’s break it down. Why Change Control Matters Imagine trying to manage an application that spans multiple environments, each with its unique configurations. Things can … Continued

This post first appeared on blog.netwrix.com and was written by Dirk Schrader.
Cyber attacks are deliberate attempts to steal, alter, or destroy data or to disrupt operations and to damage the digital parts of a critical infrastructure. This blog post explores the most destructive major cyber attacks in history, detailing the underlying motives and impact, and then offers prevention and detection best practices. Types of Cyber Attacks … Continued

This post first appeared on blog.netwrix.com and was written by Jonathan Blackwell.
Overview of PowerShell Remoting PowerShell is a great scripting and automation tool — and it also enables administrators to execute commands and scripts on remote computers remotely, as if they were sitting in front of them. Indeed, early in the history of PowerShell, Microsoft added support for cmdlets to run on remote systems with the -ComputerName parameter. … Continued

This post first appeared on blog.netwrix.com and was written by Jonathan Blackwell.
Each individual in your organization needs a user account to access data, applications, servers, cloud services and other resources. If you have just a few accounts, you may be able to create, secure and govern them throughout their lifecycle using manual processes. However, manual processes are highly prone to human errors and do not scale … Continued

This post first appeared on blog.netwrix.com and was written by Dirk Schrader.
There are some things you want to keep private such as your bank account number, government ID number, etc. In the digital age, that includes the passwords that protect these accounts because once your account credentials are compromised, cybercriminals can get that information. That is why password attacks have become so prominent today. What is … Continued

This post first appeared on blog.netwrix.com and was written by Jonathan Blackwell.
Introduction to Outputting in PowerShell Anyone familiar with PowerShell knows that the output of PowerShell commands is displayed in the terminal by default. However, there may be situations where you would want to redirect or save output to a file. In short, redirecting or saving PowerShell output increases productivity, helps with debugging, provides useful logs, … Continued

This post first appeared on blog.netwrix.com and was written by Jonathan Blackwell.
Introduction to Microsoft Active Directory Overview of AD Microsoft Active Directory is a directory service for Windows domain networks. Active Directory serves as a centralized database which stores information about network resources, including users, computers, and services. It plays a significant role in network management and security, providing a framework for user authentication, authorization, resource … Continued

This post first appeared on blog.netwrix.com and was written by Dirk Schrader.
Imagine leaving your car key at a public place, only to drop your keys when exiting the vehicle. Someone picks them up and drives away. They speed through a school zone and are caught on camera. Later, the car is used in a robbery. Now, you’re not only missing your car but also wrongly implicated … Continued

This post first appeared on blog.netwrix.com and was written by Jonathan Blackwell.
Introduction In Windows system administration, one of the more advanced yet important tasks that can be accomplished using PowerShell is deleting registry keys and values. This operation requires careful handling to avoid unintended consequences. Registry keys and values in Windows are critical components that store configuration settings for the operating system and installed applications. Modifying … Continued

This post first appeared on blog.netwrix.com and was written by Jonathan Blackwell.
Introduction to Access Provisioning The primary purpose of a network is to enable sharing of resources among a group of users. Whether those resources are computing devices, applications or file data, the goal is to provide access to exactly those who need it. However, achieving this goal can be challenging because modern organizations are highly … Continued

This post first appeared on blog.netwrix.com and was written by Dirk Schrader.
Importance of User Account Management for Windows Computers Your network is comprised of devices and users, and both require proper management. For a user to access a device and its hosted assets, that user requires a user account that has access to the computer. The allocation and management of these accounts are important for multiple … Continued

This post first appeared on blog.netwrix.com and was written by Dirk Schrader.
Just like human users, computer programs also need access to resources on a network to function properly. There’s a difference in how these two groups—individuals and programs—access these resources, though. While humans utilize user accounts, computer programs use Active Directory service accounts. Active Directory service accounts allow computer services and programs to run without the need for human … Continued

This post first appeared on blog.netwrix.com and was written by Kent Tuominen.
SAML (Security Assertion Markup Language) and OAuth (Open Authorization) are two of the most common user authentication and authorization protocols. Both of them help manage identity and access using tokens, but they serve different purposes and operate in different contexts. This blog explains the key similarities and differences between SAML and OAuth and the specific … Continued

This post first appeared on blog.netwrix.com and was written by Jonathan Blackwell.
You may want to know the PowerShell version installed on your machine. While novice users may go to Programs in the Control Panel to check the PowerShell version, it’s often quite the disappointment when they don’t find PowerShell listed as a program there. Instead, you’ll need to resort to other methods to find the PowerShell … Continued