Security Memo
Search (Ctrl+K)
Search
Search
Dark mode
Light mode
Home
❯
tags
❯
Tag: ad
Tag: ad
55 items with this tag.
Sep 10, 2024
PT 0x07 Active Directory Exploitation and Mitigation
ad
pt-workshop
blog
cyber-ucd
ttp
Jan 23, 2024
skeleton key
stub
ttp/04-persistence
ad
Jan 08, 2024
AS-REP roasting
sec/attack
ad
ttp/07-credential-access
Jan 08, 2024
Distributed Component Object Model
ad
sec/windows
concept
protocol
Jan 08, 2024
GPP cPassword attack
ttp/05-privilege-escalation
ttp/07-credential-access
ad
sec/domainuser
Jan 08, 2024
IPv6 DNS spoofing
sec/attack
ad
ttp/09-lateral-movement
ttp/07-credential-access
sec/windows
Jan 08, 2024
Kerberoasting
ad
sec/attack
ttp/05-privilege-escalation
ttp/09-lateral-movement
Jan 08, 2024
Kerberos enumeration
ttp/08-discovery
ad
Jan 08, 2024
LDAP pass-back attack
ttp/07-credential-access
ad
Jan 08, 2024
LLMNR poisoning
ad
ttp/07-credential-access
Jan 08, 2024
NTLM relay via Cobalt Strike
ttp/07-credential-access
ad
Jan 08, 2024
Object Linking and Embedding
sec/attack
sec/windows
ttp/09-lateral-movement
ad
sec/clientside
Jan 08, 2024
PrintNightmare
ad
sec/windows
ttp/05-privilege-escalation
Jan 08, 2024
PsExec
ad
sec/windows
ttp/09-lateral-movement
sec/smb
sec/pivoting
sec/localadmin
Jan 08, 2024
RDP hijacking
sec/attack
ttp/09-lateral-movement
ad
sec/windows
sec/localadmin
Jan 08, 2024
S4U2Self abuse
ttp/09-lateral-movement
ad
sec/windows
Jan 08, 2024
SMB relay
ad
ttp/07-credential-access
ttp/09-lateral-movement
Jan 08, 2024
Security Account Manager
concept
ad
Jan 08, 2024
Service for User
ad
ttp/09-lateral-movement
ttp/07-credential-access
Jan 08, 2024
SharpView
sec/tool
ttp/08-discovery
ad
Jan 08, 2024
URL file attack
sec/attack
ad
sec/windows
sec/clientside
ttp/02-initial-access
Jan 08, 2024
ZeroLogon
sec/attack
ad
ttp/05-privilege-escalation
Jan 08, 2024
brute-force AD login without getting locked out
ad
ttp/09-lateral-movement
Jan 08, 2024
constrained delegation
ttp/09-lateral-movement
ad
Jan 08, 2024
domain cached credentials
concept
ad
Jan 08, 2024
dump and crack domain cached credentials
sec/domainadmin
ttp/07-credential-access
ad
sec/windows
Jan 08, 2024
exploiting constrained delegation via Mimikatz
sec/attack
ad
sec/localadmin
ttp/09-lateral-movement
Jan 08, 2024
golden ticket
ttp/04-persistence
ad
sec/windows
sec/domainadmin
Jan 08, 2024
key distribution center
concept
ad
Jan 08, 2024
lateral movement via DCOM
ttp/09-lateral-movement
sec/windows
ad
Jan 08, 2024
organizational unit
concept
ad
Jan 08, 2024
overpass-the-hash
ad
sec/attack
ttp/09-lateral-movement
sec/windows
Jan 08, 2024
pass-the-hash
ad
sec/attack
ttp/09-lateral-movement
sec/pivoting
sec/windows
Jan 08, 2024
pass-the-key
ad
sec/attack
ttp/09-lateral-movement
sec/windows
Jan 08, 2024
pass-the-ticket
ad
sec/attack
ttp/09-lateral-movement
sec/windows
Jan 08, 2024
principal
concept
ad
Jan 08, 2024
print spool exploit
sec/attack
sec/windows
ttp/09-lateral-movement
ttp/05-privilege-escalation
ad
sec/domainuser
Jan 08, 2024
privilege attribute certificate
concept
ad
Jan 08, 2024
registry autorun via GPO
ttp/04-persistence
sec/windows
ad
sec/localadmin
Jan 08, 2024
remote MSI package installation via WMI
ad
sec/windows
ttp/09-lateral-movement
Jan 08, 2024
remote process creation via WMI
ttp/09-lateral-movement
ad
sec/windows
sec/localadmin
Jan 08, 2024
remote scheduled task creation via WMI
ttp/09-lateral-movement
ad
sec/windows
sec/localadmin
Jan 08, 2024
remote scheduled task creation via schtask
ttp/09-lateral-movement
ad
sec/windows
sec/localadmin
Jan 08, 2024
remote service creation via WMI
ad
sec/windows
ttp/09-lateral-movement
sec/localadmin
Jan 08, 2024
remote service creation via sc.exe
ttp/09-lateral-movement
ad
sec/windows
sec/localadmin
Jan 08, 2024
resource-based constrained delegation
ttp/09-lateral-movement
ad
sec/windows
status/to-do
Jan 08, 2024
scheduled task credential
ttp/07-credential-access
ad
sec/windows
Jan 08, 2024
secretsdump
ad
sec/windows
ttp/07-credential-access
sec/tool
Jan 08, 2024
security group
concept
ad
Jan 08, 2024
security identifier
concept
ad
Jan 08, 2024
service account
concept
ad
Jan 08, 2024
service principal name
concept
ad
Jan 08, 2024
set DNS server in PowerShell
how-to
ad
Jan 08, 2024
shadow credentials attack
ttp/09-lateral-movement
ad
sec/windows
Jan 08, 2024
token impersonation
sec/attack
ttp/09-lateral-movement
ad