⚔️
DWSec Wiki
  • Welcome to the DWSec Notes
  • Windows Privilege Escalation
  • Active Directory
    • Fundamentals
      • Introduction
      • Protocols
      • Authentication
      • Glossary of terms
      • Objects
      • AD CS
    • Pentest Methodology
    • Insecure Logins
    • Bloodhound & ldapdomaindump
    • NTLMRelaying (445)
    • SMB Coercing (445)
    • Pre2k
    • DACL Abuse
    • Kerberoasting
    • Utility Tools
    • Powershell
  • Networking
    • Fundamentals
    • Pivoting, Tunneling and Portforwarding
    • DNS
    • Ligolo-ng
    • Toolbox
    • Protocols
      • 80/443 - HTTP/HTTPS
      • 389 - LDAP
      • 445 - SMB
  • Web
    • Active Enumeration
    • Passive Enumeration
  • ADPwn
  • Tools
    • Tools overview
Powered by GitBook
On this page
  • Preparation
  • Enumeration
  • Without Credentials
  • With Credentials
  • Attacks
  • Without Credentials
  • With Credentials

Was this helpful?

  1. Active Directory

Pentest Methodology

PreviousAD CSNextInsecure Logins

Last updated 5 months ago

Was this helpful?

Preparation

  • Run Responder for catching network traffic in domain

Enumeration

Without Credentials

With Credentials

Attacks

Without Credentials

With Credentials

Insecure Logins
Bloodhound & ldapdomaindump
SMB Coercing (445)