Exploiting Microsoft Windows Active Directory Certificate Service | CVE-2022-26923
Introduction We covered the recent vulnerability CVE-2022-26923 that affected Microsoft Windows Active Directory Certificate Service which allowed for local…
Active Directory
Windows Active Directory PAC Vulnerability | HackTheBox Mantis
In Windows active directory environment, PAC stands for privilege attribute certificate which stores information about the user privileges, permissions…
Group Policy Windows Active Directory Exploitation | TryHackMe VulnNet: Active
In this video walk-through, we covered enumerating a Redis No SQL database and exploiting print spooler service CVE-2021-34527 or…
The Ultimate Guide to Active Directory and Windows Server Penetration Testing
So this article will include theoretical concepts supplied with practical examples demonstrated with videos. Table of content 1- Introduction 2-Active…
Privilege Escalation and Persistence on Windows Server AD – Part 5
Premise In this tutorial, I explained how to maintain administrative access to the windows server active directory after privilege…
Active Directory Privilege Escalation on Windows Server – Pentesting Part 4
Premise In this tutorial, I explained how to do privilege escalation to gain domain controller privilege on the active…
Active Directory Penetration testing with Powershell and Mimikatz – Part 3
Premise In this tutorial, I again enumerated users, groups, memberships, and domain controllers. Then I did port scanning of…
Active Directory Penetration Testing on Windows Server – Part 2
Premise In this tutorial, I explained how to enumerate current logged on users on Active directory. Then we enumerated…
Active Directory Penetration Testing on Windows Server – Part 1
Disclaimer: The script shown in the video is the property of offensive security. In this tutorial, I explained how…