geoda

learning by hacking

Pages

About
Projects
Books
Penetration Test Attack Chain
Walkthroughs
home

Post Exploitation - Pulling NTDS and extracting with SecretsDump

To continue our example of targeting Active Directory, below is an example of how an attacker can pillage the NTDS file after obtaining a Domain Admin account that has access to a Domain Controller.

~# contact

eric at geoda-security [dot] com

Follow @ericsguillen

~# history

▼ 2020 (3)
- ▼ June 2020 (2)
  - Reg Query - Remotely check if someone is logged in...
  - My first boot2root - SecKC
- ► January 2020 (1)

► 2019 (7)
- ► April 2019 (2)
- ► March 2019 (2)
- ► February 2019 (1)
- ► January 2019 (2)

► 2018 (9)
- ► November 2018 (4)
- ► October 2018 (1)
- ► May 2018 (2)
- ► April 2018 (1)
- ► March 2018 (1)

► 2017 (19)
- ► October 2017 (1)
- ► June 2017 (1)
- ► May 2017 (1)
- ► April 2017 (2)
- ► March 2017 (7)
- ► February 2017 (7)

► 2016 (6)
- ► October 2016 (1)
- ► August 2016 (5)

~# groups

Hacking, Penetration Testing, Security. Awesome Inc. theme. Powered by Blogger.