Exchange 2016
How to Enable Cached Mode in Outlook and the Pros and Cons of Running Cached Mode
Outlook is a popular email client that offers various features and settings to enhance productivity and efficiency. One of these settings is Cached Mode, which allows users to access their mailbox data offline. In this article, we will guide you through the process of...
Exchange Server Vulnerabilities and the Importance of Patching and Testing
Introduction Over the past year, several vulnerabilities have been discovered in Exchange Server, the popular email and collaboration platform developed by Microsoft. These vulnerabilities have highlighted the critical importance of keeping systems patched and...
Updating Autodiscover DNS Records When Moving Providers
When moving providers, it is crucial to update your Autodiscover DNS records both internally and externally to avoid any account setup failures. Autodiscover is a feature in Microsoft Exchange that automatically configures email clients, such as Outlook, to connect to...
How to Check and Block IP Addresses Causing Account Login Failures in Exchange 2013, 2016, and 2019 Application Logs
Exchange servers play a crucial role in facilitating email communication within organizations. However, it is important to monitor and secure these servers to prevent unauthorized access and potential security breaches. One way to enhance security is by regularly...
Protecting Your Barracuda Email Appliance from Vulnerabilities
In today's digital landscape, ensuring the security of your email infrastructure is of utmost importance. One crucial step in safeguarding your Barracuda Email Appliance is to keep it up-to-date and protected from potential attacks. This can be achieved by regularly...
Solve Exchange 2019 SMTP error by quickly updating your DNS.
In one of my lab servers, I was busy working on a project and email would just not send. I kept on getting the error below from the consoles output: Error with SMTP server... (451, b'4.7.0 Temporary server error. Please try again later. PRX2') This error is generic...
Secure Exchange 2019 OWA with a Google Captcha option.
In one of my recent blog posts, we covered brute forcing of the OWA page in Exchange 2019, this also applies to Exchange 2016 and Exchange 2013. If an attacker successfully gains access, they might access an account that has elevated privileges or given enough time,...
Exchange 2019:- ProxyToken Exploit
In three of my previous blog posts, we looked at exploiting unpatched/vulnerable Exchange servers with "ProxyLogon", "ProxyShell" and "ProxyNotShell". As the exploit lists keep growing, we will look at the "ProxyToken" exploit. One of my many Exchange 2019 lab servers...
Exchange 2019:- ECP_DLP_Policy Exploit
I have been covering some of the exploits in Exchange Server in a few of my blog posts and wanted to highlight the fact that I tested another one which allowed me to get a shell on the Exchange Server. Metasploit has a module for the above exploit which worked against...
Exchange 2019:- ProxyNotShell Exploit
In two of my previous blog posts, we looked at exploiting unpatched/vulnerable Exchange servers with "ProxyLogon" and "ProxyShell". As the exploit lists keep growing, we will look at the "ProxyNotShell" exploit. One of my many Exchange 2019 lab servers was running...