Please enable JavaScript.

Coggle requires JavaScript to display documents.

Active Dir Initial Attack - Coggle Diagram

- - - - Copy of DS directory
      - Authentication authorization services
      - Replicate updates to other domain controller
      - Admin Access to manage user
        accounts and network resources
    - - Ntds.dit file
      - Stored by default in %SystemRoot%\NTDS folder
      - Accessible through the domain controller processes and protocols
  - - - admin boundary
      - replication boundary between DC
      - Authentication and authorization boundary
    - - Share a contiguous name space with parent
      - Can have additional child domains
      - Create two way transitive trust with other domains
    - - Collection of trees
      - Common Schema
      - Common config partition
      - Share global catalog
      - Enables trusts between all domains
      - Sync the Admin and Schema Admin groups
    - - Represent organisation logically
      - Manage objects in a consistent way
      - Delegate Permissions to administer groups of objects
      - Apply policies
    - - Mechanism for users to access a resource
        in another domain
      - Directional
        
        Trust flows from trusting domain
        to trusted
      - Transative
        
        Extended beyond two-domain trust
        to include other trusted domains
    - - User
      - InetOrgPerson
      - Contacts
      - Groups
      - Computers
      - Printers
      - Shared Folders
- - - - -tf targets.txt
      - -smb2support
    - - add -i
      - nc to local port
    - - -e
      - add msvenom payload
    - - -c
      - execute a command