Methodology

We've own the Domain, Now what ?

1. Provide as Much Value to the Client as Possible

  • Put Your Blinders On and Do It Again

  • Dump the NTDS.dit and Crack Passwords

  • Enumerate Shares for Sensitive Information

  1. Ensure Persistence

    • What Happens If DA Access Is Lost?

    • Create a Domain Admin (DA) Account ( DO NOT FORGET TO DELETE IT AFTER )

  2. Do a little Dance

PreviousGolden Ticket AttacksNextCase Study

Last updated