Post-Domain Compromise

Playbook

  • Do it again

    • Take a different approach

    • Find more vulnerabilities

    • Provide more value to the customer

  • Dump the NTDS.dit and crack the passwords

  • Find Shares and sensitive information

  • Persistence via creating a Domain Admin account or Golden Ticket

  • Plant a flag :P

PreviousmiscNextDumping the NTDS.dit