Post-Domain Compromise

Playbook

• Do it again

  • Take a different approach

  • Find more vulnerabilities

  • Provide more value to the customer

• Dump the NTDS.dit and crack the passwords

• Find Shares and sensitive information

• Persistence via creating a Domain Admin account or Golden Ticket

• Plant a flag :P