active-directory

3 articles
sort: new top best
clear filter
bug-bounty498 google355 xss301 microsoft298 facebook263 rce211 exploit200 malware171 apple164 cve136 account-takeover115 bragging-post102 privilege-escalation95 csrf90 phishing86 browser75 writeup74 authentication-bypass69 supply-chain68 dos66 stored-xss65 reflected-xss57 ssrf56 reverse-engineering55 react52 access-control51 input-validation49 cross-site-scripting48 aws47 cloudflare47 docker46 web-security46 lfi46 sql-injection45 smart-contract45 ethereum44 web-application44 web343 defi43 ctf43 oauth43 node43 pentest40 race-condition39 idor37 open-source37 cloud37 burp-suite36 info-disclosure36 auth-bypass35
0 5/10
A Path Hidden in Plain Sight: Owning Active Directory
ctf

A CTF writeup demonstrating Active Directory reconnaissance through anonymous LDAP binding and SMB enumeration on a Windows Server 2016 domain controller, focusing on initial foothold discovery via network scanning and credential enumeration.

active-directory ldap-enumeration smb winrm kerberos domain-enumeration anonymous-bind windows-server privilege-escalation credential-harvesting ctf-writeup
Jabaribrown nmap NetExec windapsearch.py Windows Server 2016 htb.local FOREST
infosecwriteups.com · Jabaribrown · 5 hours ago · details
0 3/10
‍♂️How I Escalated From Domain User to Domain Admin
writeup

A technical writeup describing a privilege escalation attack from domain user to domain admin privileges, likely leveraging Active Directory misconfiguration or over-permissive permissions.

privilege-escalation active-directory domain-admin windows internal-pentest
Jabari Brown
medium.com · Jabaribrown · 1 day ago · details
0 5/10
ADCS-ESC1: Misconfigured Certificate Templates Leading to Full Domain Compromise
vulnerability

ADCS ESC1 is a critical Active Directory Certificate Services misconfiguration where improperly configured certificate templates allow low-privileged users to request certificates on behalf of domain administrators, enabling full domain compromise through privilege escalation.

active-directory certificate-services adcs esc1 privilege-escalation domain-admin certificate-template misconfig lateral-movement windows
ADCS ESC1 Active Directory Certificate Services
cobalt.io · GhostShift · 1 day ago · details