Security

vsphere ssl

Replace vCenter Server Appliance certificate with valid SSL from a trusted PKI – How to

I have recently been doing some lab experiments with VMware vSphere. I’m running three ESXi hosts with vCenter Server Appliance on one of them. Out-of-the-box vCenter comes with a self-signed certificate, which means ignoring the SSL warning on every log-on. Instead, I wanted to implement a valid certificate from a… Read More »Replace vCenter Server Appliance certificate with valid SSL from a trusted PKI – How to
dns-dhcp-dynamic-update

DNS Secure Dynamic Updates and DHCP – How does it work and how to update PTR-records in DNS?

There are some common misconceptions regarding DNS dynamic updates and DHCP servers. In this post I will share my knowledge about this and how to automatically update PTR-records with dynamic updates enabled. First off, what is DNS Dynamic Updates? Let’s get that out of the way right away: None: Dynamic update… Read More »DNS Secure Dynamic Updates and DHCP – How does it work and how to update PTR-records in DNS?
ntlmv2

The dangers of WPAD and LLMNR – Poisoning attack

There are already some great resources out there explaining vulnerabilities linked to the Web Proxy Auto-Discovery Protocol (WPAD) and Link-Local Multicast Name Resolution (LLMNR) protocol. In this post I will demonstrate an example using WPAD poisoning and Brute Force. Basically, WPAD is an auto-discovery protocol used by web browsers to… Read More »The dangers of WPAD and LLMNR – Poisoning attack