CQURE

Welcome to CQURE Academy - Where Windows Security Experts Level Up But what excites us the most is sharing what we know with you and other IT pros. NO FLUFF.

On a daily basis we do a bunch of cool things — ranging from IT security audits, to pe*******on tests or solution implementations in big and small organisations around the world. Especially if you already have a certain degree of skills and are interested in seriously levelling up your game. How we gonna do it? Our plan is to help you stay on top of your game through weekly video tutorials, online

trainings, articles and slide decks from our offline trainings. Promise. We’ll be covering topics like Windows Internals, Identity Theft Protection, Pe*******on Testing, Malware, Forensics, Incident Response and other. Like our Page to stay tuned. Consulting & Services: https://cqure.pl/
Academy: https://cqureacademy.com/

29/05/2026

Nothing makes us happier than hearing from our Students and Customers.

We truly appreciate every piece of feedback we receive, and we're grateful to continue being part of our alumni's professional growth and learning journey.

A huge thank you to Michael Waterman for sharing his experience after completing our Masterclass: with Peter Kloep.

Seeing professionals expand their skills, earn certifications, and gain confidence in areas such as AD CS and is exactly why we do what we do.

Thank you for your trust, your commitment to learning, and your kind words. Congratulations on your achievement, Michael! 👏

📅 Interested in mastering PKI yourself? The next Public Key Infrastructure Management training with Peter Kloep starts on August 31. Sign up here:
https://cqureacademy.com/cyber-security-training/lvc-public-key-infrastructure-management/

Paula Januszkiewicz🦝

27/05/2026

Paula Januszkiewicz, CEO & Founder of CQURE, Microsoft Regional Director, and MVP, will be speaking at the European Summit of Women Leaders in Science & Tech in Warsaw on June 11!

During her keynote:
🎯 “World Threat Adventures: Where Hackers Hide and Investigators Hunt”
Paula will share real-world insights into cyber investigations, persistence techniques, Active Directory attacks, cloud persistence, and modern digital forensics.

The event brings together inspiring leaders from science, technology, business, cybersecurity, and innovation from across Europe and beyond.

Among the inspiring leaders participating in the event are:
Bianka Siwińska, Barbara Nowacka, Marta Cienkowska, Karolina Zioło-Pużuk, Maria Mrówczyńska, Paulina Piechna-Więckiewicz, Anita Sowińska, Agnieszka Jankowska, Marta Kosior-Kazberuk, Anna Urbańska, Danuta Zawadzka, Kamila Cichocka, Bogumiła Kaniewska, Marta Jakowluk, Barbara Jankowska, Sylwia Pyśkiewicz, Iwona Kozera, Magdalena Bezulska, Maia Mazurkiewicz, Joanna Zakrzewska, Justyna Osuch-Mallett, Susana Mira Leal, Candy Chatawanich, Gauri Kapur, Sylwia Spurek, Virginia Shepardson-Serna, Enass Alshahwan, Oyundari Navaan-Yunden, Ewa Pilat, Koviljka Špirić, Sandra América Noriega Urízar de Kugler, Violeta Agrici, Magda Groszek, Agnieszka Zając, Aleksandra Hamryszak, Anna Wiącek-Kocot, Bożena Leśniewska, Caro Paduch, Katarzyna Majewska, Hanna Ziarkowska, Yuliia Shtukaturova, Magdalena Chudzikiewicz, Chada El Islam Benmahcene, Sylwia Bilska, Nilofar Ayoubi, Ruth D. Jones, Małgorzata Mroczkowska-Horne, Agnieszka Chmiel, Agnieszka Selak-Taboł, Aneta Kocemba, Paulina Sypniewska, Ewa Rumińska-Zimny, Natalia Klima-Piotrowska, Anna Fidelus, Agnieszka Cudnoch-Jędrzejewska, Isabel Neto, Anna Chrobok, Paulina Święcicka, Anna Raubo, Beata Piskorska, Aleksandra Gaworska-Krzemińska, Dominika Niewiadomska-Siniecka, Rebecca Little, Magdalena Barwiołek, Monika Kubkowska, Nataliya Siromakha, Agnieszka Maciejewska-Skrendo, Katarzyna Halicka, Jolanta Szempruch, Klaudia Kloc, Katarzyna Socha, Magdalena Markowska, Agata Włodkowska, Bogusława Drelich-Skulska, Barbara Wikieł, Ewa Gruszczyńska, Joanna Tkaczyk, María Dolores Higuera González, Dorota Anna Krawczyk, Karolina Linda, Kinga Lewicka, Alicja Tatarczuk, Beata Kisielewska, and many more!

Learn more: https://wo-men-leaders.com/

Stay CQURE!

Perspektywy Women in Tech

25/05/2026

A lot of teams treat as “secure by default” because it sits in a . Attackers love that assumption.

On June 15, we launch a 5-day Live Virtual Class, Hacking and Securing Server, with Margarita Naumova - a deep, lab-driven workshop on SQL Server 2022 and 2025 for , admins, and .

You will:
🔺 Review core security principles and common
🔺 Implement , role-based access, and auditing
🔺 Understand system and implications of SQL Server security
🔺 Integrate with like and
🔺 Work through attack simulations and monitoring/compliance scenarios (GDPR, PCI-DSS)

The class is limited to 12 participants for real interaction, troubleshooting, and Q&A. You get 4 weeks of lab access, learning platform access, CQURE tools, and a certificate after completion.

Sounds good? Learn more and register:
https://cqureacademy.com/cyber-security-training/lvc-hacking-and-securing-sql-server/

22/05/2026

Looking for practical, hands-on cloud security training during Black Hat USA 2026? ☁️🛡️

Join Paula Januszkiewicz and Marcin Krawczyk from the CQURE Team for the Pentesting & Securing the Cloud masterclass and learn how modern cloud attacks really work.

From identity abuse and misconfigurations to offensive techniques and effective defense strategies based on real-world experience.

You can also register for trainings delivered by other CQURE Academy experts during Black Hat Events, including Amr Thabet and Richard Hicks. 🎓

👉 https://cqu.re/bhmk

20/05/2026

At CQURE, we believe that teaching and sharing knowledge are essential to building a stronger cybersecurity community, and Span Cyber Security Arena was a fantastic place to do exactly that.

A huge thank you to the entire SPAN team, Hrvoje Engelman & Deana Audić Bosnar for the invitation and excellent organization. It was a pleasure for our CEO Paula Januszkiewicz to share the stage with so many outstanding experts, including Sami Laiho, Joe Tidy, Joe Slowik, Sebastian Krčmar, Scott Schnoll, Jakov Bingula, Željko Ćurković, Kaja Ciglić, Jorge De Almeida Pinto, Saša Kranjac, Eric Woodruff, and many other brilliant professionals from across the cybersecurity community.

Thank you as well to everyone who attended Paula’s sessions and masterclass on Active Directory security, DFIR, persistence, and modern attack techniques. Your engagement, questions, and passion for learning continue to inspire us.

The next opportunity to meet the CQURE Team in person will be at Black Hat USA 2026 in Las Vegas, where Paula Januszkiewicz, together with Marcin Krawczyk, Amr Thabet, and Richard Hicks, will deliver exclusive training sessions packed with practical, hands-on cybersecurity knowledge. 🎓🛡️

See you in Vegas! 😊
👉 https://cqu.re/bhat

19/05/2026

Attackers don't take summer vacations. Seasonal gaps in monitoring and staffing are exactly what they count on.

While teams rotate through holidays, misconfigured dependencies and identity flaws stay exposed. Adversaries know when your guard drops.

That's why we built the Summer Infrastructure Pentesting Bootcamp: ten knowledge-packed modules over 5 days – starting June 15.

Paula Januszkiewicz will be joined by CQURE experts: Artur Kalinowski, Pavel Formánek, and Amr Thabet.

We're taking you deep into the stack - from reconnaissance and AD & Entra ID exploitation through advanced Windows services to enterprise post-exploitation.

Everything based on real labs and field data from our consulting engagements.

If you're a pentester, analyst, or admin who wants to sharpen up before the summer threat spike, this one's for you: https://cqureacademy.com/cyber-security-training/infrastructure-pentesting-bootcamp/

18/05/2026

By default, SQL Server tells every new login exactly what databases you have.

It's like leaving a vault's floor plan on the front desk.

Names like HR_Payroll or Finance_Prod are enough for an attacker to know where to dig. Add a forgotten guest account or TRUSTWORTHY left enabled, and a zero-permission login becomes sysadmin in seconds.

On May 28, Damian Widera – Data Platform MVP (15 times), 20+ years of experience – delivers Module 7 of the Cybersecurity Master Annual Program: Securing SQL Server.

Learn baseline concepts, instance security, and managing logins and passwords that actually hold.

Join the 1-day course: https://cqureacademy.com/cyber-security-training/cmap-2026-module-7-securing-sql-server/

Paula Januszkiewicz

15/05/2026

Our CEO, Paula Januszkiewicz, will take the stage at the Span Cyber Security Arena in Croatia next week (May 18–20, 2026) with two critical sessions focused on today’s evolving cyber threat landscape.

🔺 Lecture: “Forensic Adventures: Where Hackers Hide and Investigators Hunt” Most organizations miss the forensic artefacts that persistence mechanisms leave behind - Automatic Destinations files, USN Journal entries, Kerberos traces. Paula demonstrates live how to hunt these breadcrumbs across endpoints, AD, and cloud using real incident response checklists.

🔺 Masterclass: “Advanced Active Directory Attacks & Mitigations” Kerberoasting, DCSync, Pass-the-Hash, delegation abuse, ACL manipulation. Live attack demos, native tool detection, production-ready remediation.

These aren’t just theory. They’re happening in your environment right now.

Want to learn more? Register today: 🔗
https://spanarena.eu/en/

15/05/2026

This is the last call!⏰

In most environments, Entra ID is the single most important security control - and the one most likely to have gaps.
These are the issues we find in nearly every audit: stale accounts that were never deprovisioned, conditional access policies with exceptions that became the rule, MFA enforced for users but not for service principals, and app registrations with permissions nobody remembers granting.

Starting May 18, Marcin Krawczyk leads a 3-day Masterclass: Managing Entra ID from A to Z. You'll go through tenant architecture, identity lifecycle, conditional access design, identity protection, workload identities, and governance with hands-on labs that mirror real hybrid environments.

Every team managing Microsoft identity needs these skills.

Register here: https://cqureacademy.com/cyber-security-training/lvc-entra-id/

Paula Januszkiewicz

14/05/2026

⚔️👑 From castles to cyber battles - Techorama Belgium was truly unforgettable!

Our CEO, Paula Januszkiewicz, took the stage at Techorama Belgium to share one important message with the cybersecurity community: modern organizations are rarely compromised because attackers are “magical.” They are compromised because visibility, ownership, and identity control are still broken.

During her session, “Modern Cybersecurity Failures: Skills and Misconfigurations That Define the Battlefield”, Paula explored the real-world challenges security teams face every day:
⚔️ Predictable architectural weaknesses
⚔️ Excessive privilege flow
⚔️ Fragmented monitoring
⚔️ Lack of transparency during incidents
⚔️ Overly complex environments that become impossible to fully understand

And what better setting to discuss cybersecurity than a medieval-themed conference filled with castles, armor, and knights? 🏰🛡️

At CQURE Academy, we strongly believe that cybersecurity is not about building taller walls - it’s about understanding what is already happening inside the kingdom. That means visibility, threat hunting, identity protection, monitoring, and practical skills that help organizations stay ahead of attackers.

Huge thanks to the incredible Techorama community, Pieter Gheysens, Richard Campbell and Niall Merrigan for the amazing atmosphere, inspiring discussions, and passion for technology and security! ❤️

If you would like to meet Paula live and learn directly from one of the world’s leading cybersecurity experts, you can still book your spot for Black Hat USA 2026 this August! 🔥

Paula Januszkiewicz will be delivering exclusive training sessions focused on Advanced Hacking and Securing Windows Infrastructure as well as System Forensics, Incident Handling & Threat Hunting. Don’t miss the opportunity to gain hands-on knowledge from the field, explore real-world attack and defense techniques, and connect with the global cybersecurity community. 🎓🛡️
👉 https://blackhat.com/us-26/training/schedule/presenters.html -januszkiewicz-32145

Adresse

Bahnhofstrasse 21
Zug
6300

Webseite

https://cqure.pl/

Benachrichtigungen

Lassen Sie sich von uns eine E-Mail senden und seien Sie der erste der Neuigkeiten und Aktionen von CQURE erfährt. Ihre E-Mail-Adresse wird nicht für andere Zwecke verwendet und Sie können sich jederzeit abmelden.