Storing movie collection in the Windows Clock https://blog.rice.is/post/windows-clock/

@obivan It's not because you can that you should xD

@itm4n Hope you will!

@itm4n That's a very cool patch analysis, the detective work is crazy on this one! Also seeing an analysis of another type of vulnerability than memory corruption is very refreshing

Some classic NTLM relay tricks seem to be dead on Windows Server 2025

What Windows Server 2025 Quietly Did to Your NTLM Relay

TL;DR This post is super short, nevertheless: The classic cross-DC coerce + relay to LDAPS technique, abusing a misconfigured LmCompatibilityLevel (0/1/2) to generate NTLMv1 + ESS and strip the MIC, is dead when the victim DC runs Windows Server 2025. And it’s not just a policy change. It’s hardcoded in msv1_0.dll. Disclaimer I'm not 100%…

Decoder's Blog (decoder.cloud)