Active Directory

PreviousCOM Hijacking NextDomain Enumeration

Last updated 2 years ago

Active Directory

Definition

Active Directory is a centralized directory service used to manage Windows networks. It stores information about objects on the network and make it easy to configure what is needed.

Intro

Active Directory attacks is a huge topic, a lot of the scenarios depend on the situation of attacker and network infrastructure. this section of the book is about the known active directory attacks and tips/tricks.

Most of the attacks in this section (in real world scenarios as well) are based on the assumption that you already have a low-privilege access to a system inside the internal network or have physically attached your system and you are pass the firewall. normally, you wont see a domain controller out in the open or directly accessible from the internet, so most of the active directory attacks are part of an internal pentest or red team engagement.

The Process

Typically the process of Active Directory penetration testing ( aka internal pentesting ) is like this:

Initial Domain Access ( through a low-privileged user account )
Local Privilege Escalation
Internal Domain Recon
Poisoning / MITM
Domain Admin Access
Domain Dominance ( fancy name for " full compromise " )
Domain Persistence
Asset Access
Exfiltration

Active Directory

Active Directory

Definition

Intro

The Process

Typically the process of Active Directory penetration testing ( aka internal pentesting ) is like this: