How do attackers go from file shares to full domain admin access without ever stealing a password? In this real-world case study, we'll share how a single misconfiguration opened the door to a full network compromise, and how our #pentest team exploited hidden file shares (with that sneaky $ at the end) to uncover sensitive data most IT teams don’t realize is exposed.

We'll share:
• How attackers exploit hidden file shares
• Why misconfigured Windows Deployment Services are a major risk
• The exact relay attack path that led to domain dominance
• What red flags to look for in your environment

Watch: https://youtu.be/78L2Zz2Ttbs

#Cybersecurity #PenetrationTesting #DomainAdmin #NetworkSecurity #Windows #LMGSecurity #RedTeam #ITSecurity #infosec #pentesting #IT #CISO

A single misstep in AD CS can hand attackers the keys to your entire domain—no passwords needed.

If your team installed Active Directory Certificate Services more than six months ago, your organization could be at risk.

Watch our new 4-minute video to see how a default setting enables low-privilege users to escalate all the way to domain admin and what you can do to reduce your risk. https://youtu.be/S59dNEPnJ4M

#ActiveDirectory #Cybersecurity #PenetrationTesting #PrivilegeEscalation #ADCS #ITsecurity #infosec #CISO #DomainAdmin #NetworkSecurity #DFIR

So, I'm considering taking some risks and leaning into setting up AD and domain on my home network, with my homelab.

I'm concerned about what risks I should watch out for, and things I should keep in mind while setting it up and configuring it. My only hands on experience with setting that stuff up, was in a lab setting for one of my classes for school, and it was a very basic overview, and didn't cover the security risk side of things.

I don't really have a huge need or reason to do this, largely just curious about the setup and management of a dozen or so computers on a small network like this.

Also concerned about configuring my network shares for Android devices that exist on the network, that access the shares for media streaming as well.

#windowsadmin #sysadmin #activedirectory #ActiveDirectorySecurity #domainadmin #infosec #windowssecurity #windowsserver #HomeLabServer #homelab #serveradmin

Windows 2019 Domänen-Admin hat keine Berechtigung für diverse Vorgänge – lokaler Administrator schon.
In Windows Server 2019 sind Sicherheitsstrukturen modifiziert worden, was zu Ausführungsp
https://ostermeier.net/wordpress/2024/02/windows-2019-domaenen-admin-hat-keine-berechtigung-fuer-diverse-vorgaenge-lokaler-administrator-schon/
#Allgemein #Benutzerkontensteuerung #controlexe #Domainadmin #Domnenadmin #GPO #Gruppenrichtlinienobjekt #MicrosoftWindowsServer2019 #rundll32exe #UAC

"Ok, I just became domain admin..... so..... what now??"

#pentest #whitehathacking #postexploitation #activedirectory #domainadmin #postpostexploitstion