Ressource Description Author Attack AD: 0 to 0.9 The encyclopedia to start your journey in AD security. My TOP 1. Eloy Pérez González Bloodhound Nodes Must-read to understand AD attack paths. SperterOps Bloodhound Edges Must-read to understand AD attack paths. SpecterOps thehacker.recipes pages after /ad/movement/ : credentials, mitm-and-coerced-authentications, ntlm, kerberos, dacl, group-policies, trusts, netlogon, ad-cs, sccm-mecm, exchange-services, print-spooler-service, domain-settings @_nwodtuhs CERT-FR checklist ANSSI CME wiki First thing first. Can I make it with CME? porchetta, mpgn64 GOAD tutorial Best to practice, prepare tooling. mayfly277 activedirectoryrights List of ActiveDirectoryRights values. Microsoft well-known SIDs List of Well-Known SIDs. Microsoft SDDL Understand ACE premissions. Attack bookmarks Curated list to deepdive a particluar topic. infosecn1nja Dog Whisperer How-to for Bloodhound and more. SadProcessor Cypher Queries Hunting with BloodHound. STEP 2 after the pre-built queries. hausec KRB Attacks 101 Good redacting effort. m0chan harden harden
Cheatsheet Description Author Hunting Windows PrivEsc Awesome presentation covering how to hunt the named pipes and much more. Kaspersky Windows Logon workflow Awesome schema sequencing the security event IDs for windows logon. Andrei Miroshnikov
Ressource Description Author AD Discovery - Haboob Team AD Exploitation Contains the CLI of the most well-known tools for common enumeration and attack methods: Local PrivEsc, Lateral Movement, Domain PrivEsc, Domain Persistence, Cross Forests Attacks S1ckB0y1337 PS cheatsheet 1 The best CRTP + CRTO cheatsheet for lab certifications made by pentesteracademy. casvancooten PS cheatsheet 2 PowerView, PowerUp, PowerSploit, and Empire cheatsheets. HarmJ0y PS toolbox 1 Tools used for the offensive powershell training provided by specterops. specterops.io PS toolbox 2 Collection of tools. varonis PS snippet gallery Snipets. powershellgallery PS old stuffs - ethicalhackersacademy