by edward | Nov 21, 2023 | Exchange 2016, Exchange 2019, NMAP, NMAP Scripting Engine, NSE
Performing some tests against my lab Exchange servers, I noticed that Shodan.io revealed information. Take note that attackers also use Shodan.io when enumerating targets. After digging further with NMAP and some scripts, it became more apparent that internal...
by edward | Oct 26, 2018 | Exchange 2016
In Exchange 2016, you can harden access to the Exchange Admin Center (EAC) by creating a rule/s in IIS. To do this you will need to add an additional feature to IIS called “IP and Domain Restrictions”. This can be done from Server Manager and selecting...
by edward | Feb 2, 2015 | Exchange 2013
In my lab I uninstalled Exchange 2010 and then installed Exchange 2013. The setup ran fine but after the setup the following errors were logged every second on my exchange server: Solution: Navigate to C:\Windows\System32\inetsrv\config and open...