Trimarc

Join us in 30 minutes for a REstream of our previous Happy Hour episode: 11 am PT / 2 pm ET ?? Hacking Demystified, featuring David Kennedy It's a replay of our previous livestream, but we'll be commenting LIVE on Twitch, so join the conversation at https://lnkd.in/ewMP-Pts

Hello, friends! It's now 2025 which is?*officially*?the future. And in the future, your open-source AD CS auditing tools should provide risk ratings for their findings. So... that's what you're getting in Locksmith 2025.1.1 - just released today! Every issue Locksmith finds now includes a risk score which maps to a risk level. These risks should help you decide which issues to tackle first. And we've added some new interactivity to make sure the remediations are more customized to your AD CS situation. Additionally,?Sam Erde?is now the official Locksmith CI/CD wizard! His first task as wizard was to automate the creation of an MkDocs site for Locksmith. Thanks, Sam! For full details, head to the release page: https://lnkd.in/eSidYPnR And if you want to get started using these new features now, you can install Locksmith from the PowerShell gallery right now: Install-Module -Name Locksmith -Scope CurrentUser -Force

Through dragon’s fire, a spark ignites, A Vision burns through endless nights. To guard AD realms, to keep them clear, A more secure enterprise for this New Year. Thank you for joining us during this #30DaysOfVision adventure! Happy New Year from the Trimarc crew ??

Trimarc Vision is a powerful security posture analysis product that provides visibility into the most important security components of Active Directory. With dozens to hundreds of thousands of AD users often spread across multiple domains and forests, maintaining a strong security posture can be a daunting task. This is especially true when performing risk calculations, mergers and acquisitions, or conducting remediation planning. But with the Trimarc Vision dashboards, organizations can now have a unified view of their AD security, real-world based risk scoring, and prioritized remediation guidance - all in one powerful tool that’s quick to deploy and simple to implement. Early Access pricing wraps up at the end of January, so get a demo soon to see Trimarc Vision in action. https://lnkd.in/e_JyTxAv #30DaysOfVision #ADsecurity #EnterpriseSecurity

Often, some of the most enlightening parts of a webcast or livestream are the questions that audience members ask at the end of a presentation. The questions our viewers asked at the end of our Trimarc Vision webcast were so good that we decided to break them out into a separate Q&A video. Questions included: ?? Are there plans to support Hybrid environments? ?? How are Service Accounts identified? ?? What AD level is required for Trimarc Vision to interrogate it? ?? How do you determine how the data was gathered? ?? Can alerts be generated if new vulnerabilities are generated? ?? Do you plan to add auto sync? ?? Is Trimarc Vision a real-time view? ?? How are risk scores calculated? ?? Do you offer an MSP license? ?? Does Trimarc Vision have an API/SIEM integration? ?? Can Trimarc Vision show AD health over time? ?? How does Trimarc Vision handle data security? ?? How do I sign up for Early Access to Trimarc Vision?* For Day 28 of #30DaysOfVision, check out the Q&A video to hear responses from our founder and CTO, Sean Metcalf: https://lnkd.in/eCaSq48K (*if you're considering signing up for Trimarc Vision, reach out soon, as Early Access pricing wraps up at the end of January)

#30DaysOfVision - Day 27 – Agents of Chaos. Any analyst or security engineer who has been around long enough has an intimate relationship with agent fatigue. It’s not enough to have to worry about the processing needs of an agent for every product, but also the greedy permission models that come with them. Too many product agents need the keys to your kingdom to be able to run. It’s enough already. We practice & preach the least privileged model. The Trimarc Vision agent does NOT need to be installed on a DC nor does it need admin level access. We’re a guest in your house; you’ll barely know we’re here, and we’ll help with the dishes. ?? Learn how Trimarc Vision can help your security team monitor #ActiveDirectory more efficiently in this video from our founder and CTO, Sean Metcalf: https://lnkd.in/es5e2K6M

This is Jim Sykora, Trimarc Security Consultant and author of an awesomesauce white paper, "Owner or Pwned.” Jim smashes a year’s worth of research into 54 pages, complete with code snips, screenshots, and of course, Kenny Loggins references. Read the white paper to learn about discovering and remediating AD object ownership issues: https://lnkd.in/eNScCVse And since it’s Day 26 of #30DaysOfVision, we’d be remiss if we didn’t mention that Trimarc Vision checks for the ability to take ownership of privileged objects in #ActiveDirectory. Why is this important? Well, the default behavior in Active Directory allows the Owner of an AD Object to fully control that Object. Do you know who owns objects in your AD Forest? Do you know which AD Object Owners could compromise your AD Forest? Do you know who could own your AD Objects and who could Pwn your AD? Get instant answers to these and more questions with the dashboards in Trimarc Vision for Active Directory. Get a demo at https://lnkd.in/eKtZKK2m

#30DaysOfVision - Day 25 - Criticality. Let's dig a little more into Trimarc Vision's Findings. Obvious question: how does Trimarc define levels of criticality? We define them in Vision as we always have for our assessments like our Active Directory Security Assessment. The bar for Critical: One step away from total compromise of a domain or forest. Like this tasty morsel right here. For more information on Trimarc Vision for #ActiveDirectory and all of Trimarc's services, visit https://lnkd.in/ecjVUqs8

?? "Oh, there has to be something in the stocking that makes a noise. Otherwise, what is 4:30 AM for?" ~Death [in Hogfather, by Terry Pratchett] We hope your holidays are warm, magical, and chock-full of your preferred level of festive noise. #30DaysOfVision

#30DaysOfVision - Day 23 - Environment Risk Score (ERS) Whether it’s last-minute shopping, wrapping, or moving that dang Elf to a new place on the shelf, sometimes you just don't have the time for a deep dive to assess issues in your #ActiveDirectory environment. You need to see where the problem is and start focusing your efforts on remediation. Trimarc Vision's ERS is based on the severity of each individual Finding it uncovers. That way, you can fix what needs fixin’ in your AD environment and get right back to dreideling, wassailing, and decking the halls. https://lnkd.in/e8nAkr9v