| SCCMSecrets.py: Exploiting SCCM Policies Distribution For Credentials Harvesting, Initial Access And Lateral Movement |
|
|
|
| Hello: I’m your Domain Admin and I want to authenticate against you |
|
|
|
| Pwn Dat Domain: Becoming Domain Admin With A Little Help From Veeam Backup |
|
|
|
| ADCS ESC13 Abuse Technique |
|
|
|
| Entra ID Connect Arbitrary Password Overwrite |
|
|
|
| Weaponizing DHCP DNS Spoofing — A Hands-On Guide |
|
|
|
| Spoofing DNS Records by Abusing DHCP DNS Dynamic Updates |
|
|
|
| Exploiting stale ADIDNS entries |
|
|
|
| Hijacking Someone Else’s DCSync |
|
|
|
| From NTAuthCertificates to “Silver” Certificate |
|
|
|
| MSSQL linked servers: abusing ADSI for password retrieval |
|
|
|
| Anonymised Penetration Test Report |
|
|
|
| Protected Users: you thought you were safe uh? |
|
|
|
| Azure Ad Kerberos Tickets: Pivoting To The Cloud |
|
|
|
| Relaying to AD Certificate Services over RPC |
|
|
|
| New Attack Paths? AS Requested Service Tickets |
|
|
|
| Diving Into Pre-created Computer Accounts |
|
|
|
writeups.xyz
/
Active Directory