Luke Lauterbach

Blog Posts

RC4 No More

2026-03-06

Microsoft recently announced that the Kerberos RC4 encryption algorithm will be disabled in the April Windows Update ([More Reading](https://www.microsoft.com/en-us/windows-server/blog/2025/12/03/beyond-rc4-for-windows-authentication/)). It will be able to be re-enabled until the July Windows Update, at which point it will be completely removed and there will be no option to re-enable it ([More Information](https://techcommunity.microsoft.com/blog/askds/what-is-going-on-with-rc4-in-kerberos/4489365)).

Active Directory-Integrated DNS Abuse

2026-02-24

This post explores how attackers can exploit Active Directory–integrated DNS to create or modify records, enabling name resolution hijacking, credential interception,...

GPO Link Abuse

2025-12-15

This post analyzes how improper permissions over GPO links can allow attackers to change policy scope or enforce malicious configurations across targeted OUs or domain...