writeups.xyz / Abusing Windows’ tokens to compromise Active Directory without touching LSASS

Submitter : c2a

Date: 27 October 2022

Bounty : undisclosed

Vulnerabilities :

• Local Privilege Escalation
• Windows
• Active Directory Privilege Escalation

Programs :

• Undisclosed

Authors :

• Aurélien Chalot (@Defte_)

Link :
https://sensepost.com/blog/2022/abusing-windows-tokens-to-compromise-active-directory-without-touching-lsass/