https://hackingpassion.com/tags/active-directory/Recent content in Active-Directory on HackingPassion.com : root@HackingPassion.com-[~]HugoenWed, 04 Feb 2026 11:31:37 +0100https://hackingpassion.com/ntlm-finally-disabled/Wed, 04 Feb 2026 11:31:37 +0100https://hackingpassion.com/ntlm-finally-disabled/<p>32 years. That is how long it took Microsoft to disable NTLM, the protocol that handles Windows login authentication. A broken system linked to $10 billion in damages and some of the worst cyberattacks ever recorded. Hackers have been exploiting it since 2001. Here is the story of why it took this long.</p> <p>On January 30, 2026, Microsoft announced they will finally disable NTLM by default in future Windows releases.</p>https://hackingpassion.com/cracking-windows-domain-admin-passwords-rainbow-tables/Tue, 20 Jan 2026 15:09:59 +0100https://hackingpassion.com/cracking-windows-domain-admin-passwords-rainbow-tables/<p>Cracking Windows domain admin passwords just got simple. A massive set of rainbow tables just went public, a $600 laptop is enough, and it takes 12 hours max. This flaw has existed since 1999. Microsoft ignored it for 25 years. So Google decided to force the conversation. 🔓</p> <p>The flaw is in NTLMv1. That&rsquo;s an authentication protocol from 1993. When a Windows machine logs in over a network, it sends an encrypted response based on the user&rsquo;s password. The problem? That encryption uses 56-bit DES. Cryptographers declared that dead decades ago.</p>