Active Directory
Last updated
Last updated
Active Directory is a centralized directory service used to manage Windows networks. It stores information about objects on the network and make it easy to configure what is needed.
Active Directory attacks is a huge topic, a lot of the scenarios depend on the situation of attacker and network infrastructure. this section of the book is about the known active directory attacks and tips/tricks.
Initial Domain Access ( through a low-privileged user account )
Local Privilege Escalation
Internal Domain Recon
Poisoning / MITM
Domain Admin Access
Domain Dominance ( fancy name for " full compromise " )
Domain Persistence
Asset Access
Exfiltration