Active Directory Exploitation Cheat Sheet
#Knowledge Base#Resources
A collection of reports and resources highlighting Android security vulnerabilities and best practices.
Common Enumeration and Attack Methods for Windows Active Directory
This cheat sheet presents a compilation of frequently used enumeration and attack methods that are specifically designed for Windows Active Directory.
This Cheat Sheet Draws Inspiration from the PayloadAllTheThings Repository
This cheat sheet is inspired by the PayloadAllTheThings repo.
Tools:
- Domain Enumeration
- Using PowerView
- Using AD Module
- Using BloodHound
- Remote BloodHound
- On-Site BloodHound
- Using Adalanche
- Remote Adalanche
Useful Enumeration Tools:
- Local Privilege Escalation
- Useful Local Priv Esc Tools
Lateral Movement:
- PowerShell Remoting
- Remote Code Execution with PowerShell Credentials
- Import a PowerShell Module and Execute its Functions Remotely
- Executing Remote Stateful Commands
- Mimikatz
- Remote Desktop Protocol
- URL File Attacks
Useful Tools:
- Domain Privilege Escalation
- Kerberoast
- ASREPRoast
- Password Spray Attack
- Force Set SPN
- Abusing Shadow Copies
- List and Decrypt Stored Credentials using Mimikatz
- Unconstrained Delegation
- Constrained Delegation
- Resource-Based Constrained Delegation
- DNSAdmins Abuse
- Abusing Active Directory-Integrated DNS
- Abusing Backup Operators Group
- Abusing Exchange
- Weaponizing Printer Bug
- Abusing ACLs
- Abusing IPv6 with mitm6
- SID History Abuse
- Exploiting SharePoint
- Zerologon
- PrintNightmare
- Active
