UNDER DEVELOPMENT... Learning never stops. Your comments, encouragement or criticism to my blog tkokhing.github.io are most welcome to help me grow. Thank you! ...UNDER DEVELOPMENT

Home / heptagoning / kill-chain / active_dir

Active Directory

Cover Image for Active Directory
tkokhing
tkokhing
Posted on:

Active Directory - jewel for all

Active Directory (AD) is a Microsoft-developed directory service that is essential for managing identities and access within Windows domain networks. It acts as the backbone of an organization's IT infrastructure, enabling centralized management of users, devices, and security permissions.

At its core, AD is like an internal "phone book" for the organization, but with much more power. The Domain Controller (DC) is the authoritative entity within AD, hosting the database that validates user credentials, enforces security policies, and controls access across the network. Once you're signed in, you gain access to a range of resources under the domain, including file servers, applications, and more.

Aim

This article aims to explain Active Directory concepts from an OSCP+ perspective, focusing on how attackers exploit AD in real-world breach scenarios.

Tools for Attacking Active Directory

Here I introduced to you various means to attack AD, as well as methods and tools that will evade AV detection.