⛓️Scenarios

Scenarios compiled through mostly AD training that help me sleep knowing I don't have to remember everything.

Allowed To DelegateAnsible Vault foundYou have found an Azure sync sql server and have accessBackup Operator SeBackupPrivilege dump ntds.ditBypass AMSICertificate Authority create certificate requestCertificate Authority Vulnerable CertCertificate FoundCheck connectivity with pingDebug PythonDecode StringsDefender Outbound ConnectionDefender remove definitionsDeleted AD ObjectDeserialization Payloadsdig enumerationDnsAdmin PrivEscDomainDump analysysFiles foundEvil Winrm KerberosFind ipv6 Ipv6 Port ScanningFind Write to Share NTLM TheftForce auth back to yourselfForward from host Enable Ip Forwarding KaliGPP Groups.xmlGrep email from complex contentIcacls protect binary from systeminstall dacledit.pyInvoke WebRequest vhostJenkins FoundKerberos Auth requiredOverviewGet Laps passwordsldapmodify to update ADLibreOffice Reverse Shell macrolsass.dmpOffline Sam dumpPowershell OnelinersPort 135 MSRPCRBCD GenericAll ComputerReadGSMAPasswordReset password with mimikatzShadow CredentialsSign Powershell scriptSMTP Server FoundSOCAT to redirect portsSystem on DC TGT DelegationTake ownership of files and set permissionsTightVnc Registry PasswordWinRM requires sslWriteDACL RightsAD Allowed to change ownerAdd AD DNS entry Scripted Outbound Connection Found
PreviousActive Directory CommandsNextAllowed To Delegate