Lab of a Penetration Tester: Abusing DNSAdmins privilege for escalation in Active Directory

Free

This lab demonstrates how to escalate privileges in an Active Directory environment by abusing the DNSAdmins privilege. The lab explains how a user who is a member of the DNSAdmins group or has write privileges to a DNS server object can load an arbitrary DLL with SYSTEM privileges on the DNS server. The lab setup includes enumerating users who are part of the DNSAdmins group using PowerView and targeting the buildadmin user in a real-world scenario.

FEATURES

The author has not provided features for this tool yet. If you are the author, please sign in or claim the tool to add features by clicking the icon above.

ALTERNATIVES

CredStash

CredStash is a tool for managing and securely storing credentials.

Free

IAM

KeeFarce

KeeFarce allows for the extraction of KeePass 2.x password database information from memory using DLL injection and CLRMD.

Free

IAM

Kiam

Tool for associating IAM roles to Pods in Kubernetes clusters.

Free

IAM

ConsoleMe

A web service for easier AWS IAM permissions and credential management with various login methods and IAM Self-Service Wizard.

Free

IAM

BeyondTrust Privileged Access Management (PAM)

BeyondTrust Privileged Access Management (PAM) provides comprehensive security controls for privileged accounts and users.

Free

IAM

Teller

Open-source universal secret manager for developers with seamless integration to various cloud services and vaults.

Free

IAM

Admin Free Active Directory and Windows

This article discusses protected accounts and groups in Active Directory, providing examples and screenshots to illustrate key concepts.

Free

IAM

Active Directory Control Paths

Tool for visualizing and analyzing control paths in Active Directory to determine access privileges and permissions.

Free

IAM

PINNED

InfoSecHired

An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.

Commercial

Resources

Fabric Platform by BlackStork

Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.

Free

Security Operations

Mandos Brief Newsletter

Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.

Free

Blogs and News

System Two Security

An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.

Commercial

Security Operations

Aikido Security

Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.

Commercial

Application Security

Permiso

Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.

Commercial

IAM

Wiz

Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.

Commercial

Cloud Security

Adversa AI

Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.

Commercial

AI Security