Trimarc

Join us in 30 minutes for a REstream of our previous Happy Hour episode:

11 am PT / 2 pm ET
💥 Hacking Demystified, featuring Dave Kennedy

It's a replay of our previous livestream, but we'll be commenting LIVE on Twitch, so join the conversation at www.twitch.tv/TrimarcSecur...

An AI-generated image of a hoodie-clad dragon using its fire breath to light fireworks. The old Trimarc logo is in the eye of the dragon, and the new Trimarc logo is a patch on the dragon's backpack strap. In the upper left is a sign that says "Happy New Year." There are fireworks in the background.

Through dragon’s fire, a spark ignites,
A Vision burns through endless nights.
To guard AD realms, to keep them clear,
A more secure enterprise for this New Year.

Thank you for joining us during this #30DaysOfVision adventure!

Happy New Year from the Trimarc crew 🐉

Early Access pricing wraps up at the end of January, so get a demo soon to see Trimarc Vision in action. www.trimarcvision.com

#30DaysOfVision #ADsecurity #EnterpriseSecurity

But with the Trimarc Vision dashboards, organizations can now have a unified view of their AD security, real-world based risk scoring, and prioritized remediation guidance - all in one powerful tool that’s quick to deploy and simple to implement.

With dozens to hundreds of thousands of AD users often spread across multiple domains and forests, maintaining a strong security posture can be a daunting task.

This is especially true when performing risk calculations, mergers and acquisitions, or conducting remediation planning.

Trimarc Vision is a powerful security posture analysis product that provides visibility into the most important security components of Active Directory.

- YouTube Enjoy the videos and music you love, upload original content, and share it all with friends, family, and the world on YouTube.

Check out the Q&A video to hear responses from our founder and CTO, Sean Metcalf: youtu.be/nR1fTfSjcmY...

(*if you're considering signing up for Trimarc Vision, reach out soon, as Early Access pricing wraps up at the end of January)

🔸 Do you plan to add auto sync?
🔸 Is Vision a real-time view?
🔸 How are risk scores calculated?
🔸 Do you offer an MSP license?
🔸 Does Vision have an API/SIEM integration?
🔸 Can Vision show AD health over time?
🔸 How does Vision handle data security?
🔸 How do I sign up for Early Access?*

Questions included:

🔸 Are there plans to support Hybrid environments?
🔸 How are Service Accounts identified?
🔸 What AD level is required for Trimarc Vision to interrogate it?
🔸 How do you determine how the data was gathered?
🔸 Can alerts be generated if new vulnerabilities are generated?

Often, some of the most enlightening parts of a webcast or livestream are the questions that audience members ask at the end of a presentation.

The questions our viewers asked at the end of our Trimarc Vision webcast were so good that we decided to break them out into a separate Q&A video.

Trimarc Vision - Scenario 1 - The Security Team How can Vision help your Security Team monitor Active Directory more efficiently?

We’re a guest in your house; you’ll barely know we’re here, and we’ll help with the dishes. 💗

Learn how Trimarc Vision can help your security team monitor #ActiveDirectory more efficiently in this video from our founder and CTO, Sean Metcalf: youtu.be/oXlTU7ibfWo...

Too many product agents need the keys to your kingdom to be able to run. It’s enough already.

We practice & preach the least privileged model. The Trimarc Vision agent does NOT need to be installed on a DC, nor does it need admin level access.

#30DaysOfVision, Day 27: Agents of Chaos.
Any analyst or security engineer who has been around long enough has an intimate relationship w/ agent fatigue. It’s not enough to have to worry about the processing needs of an agent for each product, but also the greedy permission models that come w/ them.

Do you know who owns objects in your AD Forest? Do you know which Object Owners could compromise your Forest? Do you know who could own your Objects and who could Pwn your AD? Answer these and more questions instantly with the dashboards in Trimarc Vision. Get a demo at www.trimarcvision.com

And since it’s Day 26 of #30DaysOfVision, we’re happy to note that Trimarc Vision checks for the ability to take ownership of privileged objects in #ActiveDirectory. Why is this important? Well, the default behavior in Active Directory allows the Owner of an AD Object to fully control that Object.

Trimarc Whitepaper: Owner or Pwnd? Foreword"Owner or Pwned?" is an in-depth journey into the intricacies of ownership in Active Directory (AD). Yes, I had to lookup how to spell intricacies. Trimarc's own Jim Sykora smashes a years’ worth of research into 54 short pages. Complete with code snips, screenshots, examples and of course Kenny Loggins' references. This whitepaper touches on all aspects of AD ownership: Organizational Units (OUs), Computers, Groups, Users, AD Certificate Services (ADCS), Group Policy Objects (GPOs), an

Read the white paper to learn about discovering and remediating AD object ownership issues: bit.ly/TWOOP

This is Jim Sykora (@jimsycurity.adminsdholder.com), Trimarc Security Consultant and author of an awesomesauce white paper, "Owner or Pwned.”

Jim smashes a year’s worth of research into 54 pages, complete with code snips, screenshots, and of course, Kenny Loggins references.

HOME | Trimarc Security A professional services company that helps organizations secure their Microsoft platform, both on-premises and in the cloud.

The bar for Critical: One step away from total compromise of a domain or forest. Like the tasty morsel in the video above.

For more information on Trimarc Vision for #ActiveDirectory and all of Trimarc's services, visit www.trimarcsecurity.com

#30DaysOfVision - Day 25 - Criticality.

Let's dig a little more into Trimarc Vision's Findings. Obvious question: how does Trimarc define levels of criticality?

We define them in Vision as we always have for our assessments like our Active Directory Security Assessment.

An AI-generated image of a dragon wearing a hoodie in front of a fireplace with stockings hung on the mantle. The old Trimarc logo is in the eye of the dragon, and the new Trimarc logo is on one of the stockings. Text in a half circle above the flames in the fireplace says "Happy Holidays"

💬 "Oh, there has to be something in the stocking that makes a noise. Otherwise, what is 4:30 AM for?" ~Death [in Hogfather, by Terry Pratchett]

We hope your holidays are warm, magical, and chock-full of your preferred level of festive noise.

#30DaysOfVision

Trimarc Vision's Environment Risk Score (ERS) is based on the severity of each individual Finding it uncovers.

That way, you can fix what needs fixin’ in your AD environment and get right back to dreideling, wassailing, and decking the halls.

www.trimarcvision.com

#30DaysOfVision - Day 23: Environment Risk Score

Whether it’s last-minute shopping or moving that dang Elf to a new spot on the shelf, sometimes you don't have time for a deep dive to assess issues in your #ActiveDirectory environment. You need to locate the problem & start focusing on remediation.

🎩 Brandon the Magnificent on the Cybersecurity Cares Streamathon:
www.youtube.com/live/4648dYf...

DEF CON 32 - Winning the Game of Active Directory - Brandon Colley YouTube video by DEFCONConference

🎤 Winning the Game of Active Directory talk at DEF CON 32:
youtu.be/M-2d3sM3I2o?...

Today, you can choose your VISION adventure...

View Brandon's talk from @defcon.bsky.social 32, or check out his card trick wizardry from the #CybersecurityCares holiday streamathon (or both!)

Home - Becky's Fund Building a future free from domestic violence through education, advocacy and service.

Last week, Brandon razzled and dazzled viewers during the Cybersecurity Cares streamathon and raised money for a great cause:

Becky's Fund, a nonprofit on a mission to end domestic violence.

www.beckysfund.org

Top section of the image is a screenshot from Brandon Colley's presentation on "Winning the Game of Active Directory" during DEF CON 32. Bottom section of the image is a screenshot of a video where Brandon is doing card tricks. Brandon is holding up the Jack of Hearts card.

Day 22 of #30DaysOfVision: Prepare to be wowed by the AD insights and skillful sleight of hand of Trimarc Senior Security Consultant, Brandon Colley.

You may have seen his talk on Winning the Game of Active Directory during #DEFCON 32, but did you know that Brandon is also a whiz at card tricks?

Collections enable easy grouping/analysis of forests in your environment, easily accessible within the Trimarc Vision UI.

For more in-depth clicking around, check out TrimarcVision.com

#30DaysOfVision Day 21

We are an industry of proud nerds. Star Trek, Star Wars, Battlestar Galactica… collecting things IS our thing. 🤓 Trimarc Vision was built by those same nerds, so we gave you Collections of Forests.

A little harder to fit on a shelf, but it sure does look pretty in the Vision Dashboard.

Trimarc Vision for #ActiveDirectory can compare forests, displaying info like number and category of findings.

Vision is available at Early Access pricing until the end of January, so visit TrimarcVision.com to learn more and schedule a customized demo.