Table of Contents

Premise

In this tutorial, I explained how to do privilege escalation to gain domain controller privilege on the active directory using mimikatz and Powershell. This attack relies on gathering the NTLM hash and generating a Kerberos TGT for the administrator account of the domain controller. The success of this attack relies on the fact that the admin of the domain controller had logged in to the Windows workstation we compromised in the past and their credentials are saved in-memory cache.

Skills Learned

Mimikatz
Powershell
Kerberos

OSCP Certificate Notes

Windows Active Directory Penetration Testing Study Notes

Video Walk-through

Active Directory, Active Directory Penetration Testing, Penetration Testing, Powershell

Show Comments

MasterMind Study Notes

About the Author

Mastermind Study Notes is a group of talented authors and writers who are experienced and well-versed across different fields. The group is led by, Motasem Hamdan, who is a Cybersecurity content creator and YouTuber.

View Articles

Active Directory Privilege Escalation on Windows Server – Pentesting Part 4

Skills Learned

Video Walk-through

Leave a Reply Cancel reply

MasterMind Study Notes

About the Author

Press ESC to close

Active Directory Privilege Escalation on Windows Server – Pentesting Part 4

Skills Learned

Video Walk-through

Leave a Reply Cancel reply

MasterMind Study Notes

About the Author

Share Article:

You might also like

Search Skills | TryHackMe Walkthrough

Introduction to Windows API | TryHackMe Walkthrough

Memory Forensics Analysis with Volatility | TryHackMe Volatility