Active Directory Enumeration & Attacks
âšī¸ Informations¶
- đ Website: HackTheBox
- đĨ Level: Medium
- đ Category: Offensive
- đ Link: Active Directory Enumeration & Attacks
đ Module description¶
Active Directory (AD) is the leading enterprise domain management suite, providing identity and access management, centralized domain administration, authentication, and much more. Due to the many features and complexity of AD, it presents a large attack surface that is difficult to secure properly. To be successful as infosec professionals, we must understand AD architectures and how to secure our enterprise environments. As Penetration testers, having a firm grasp of what tools, techniques, and procedures are available to us for enumerating and attacking AD environments and commonly seen AD misconfigurations is a must.
đ Sections¶
- External Recon and Enumeration Principles
- Initial Enumeration of the Domain
- LLMNR/NBT-NS Poisoning - from Linux
- LLMNR/NBT-NS Poisoning - from Windows
- Enumerating & Retrieving Password Policies
- Password Spraying - Making a Target User List
- Internal Password Spraying - from Linux