Security Boulevard

APT37 Adds New Capabilities for Air-Gapped Networks

IntroductionIn December 2025, Zscaler ThreatLabz discovered a campaign linked to APT37 (also known as ScarCruft, Ruby Sleet, and Velvet Chollima), which is a DPRK-backed threat group. In this campaign ...
GitHub

This Repository contains some useful PowerShell scripts related to Active Directory and DNS.

These scripts were originally published on Microsoft TechNet Gallery, and now I have copied these scripts to Github. Use Powershell 4.0 or higer version. Test before you execute these scripts in a ...
Microsoft

Signed malware impersonating workplace apps deploys RMM backdoors

Signed malware backed by a stolen EV certificate deployed legitimate RMM tools to gain persistent access inside enterprise ...
GitHub

BetaHydri/RC4_AD_Check

If DCs have AES configured via GPO, clients inherit AES even if their attribute is empty/0. Impact: You do NOT need to populate msDS-SupportedEncryptionTypes on 100,000+ computers if your DCs are ...