Active Directory is a centralized hierarchical directory database that contains information about all user accounts and shared network resources. It provides user logon authentication services and organizes and manages user accounts, computers, groups and network resources. Active Directory enables authorized users to easily locate network resources. It features include fully integrated security, easy administration using group policy, scalability to large networks, and flexibility through features like cross-forest trusts and site-to-site replication.
Hunt for Domain Controller : ActiveDirectory Pentesting Sessionhacknpentest
Before Starting this presentation we would like to thank the Null Open Source Community to give us an opportunity to present the topic in this Null Session. This Session will be entirely dedicated to have a basic understanding of how the Active Directory Works and the Hunt for the Supreme i.e. Domain Controller. We will be covering the major insights that are required to understand the Active Directory Penetration Testing. In this Session we will encounter many Dumb configuration that can lead to some kind to hacker activity like : Initial Access, Privilege Escalation and even Lateral Movement. At last we will be presenting the Red Teaming Routine where we will be demonstrating whole activity that is done during AD Penetration Testing. So Let’s go on and discover the secrets of Active Directory.
Hunt for Domain Controller : ActiveDirectory Pentesting Sessionhacknpentest
Before Starting this presentation we would like to thank the Null Open Source Community to give us an opportunity to present the topic in this Null Session. This Session will be entirely dedicated to have a basic understanding of how the Active Directory Works and the Hunt for the Supreme i.e. Domain Controller. We will be covering the major insights that are required to understand the Active Directory Penetration Testing. In this Session we will encounter many Dumb configuration that can lead to some kind to hacker activity like : Initial Access, Privilege Escalation and even Lateral Movement. At last we will be presenting the Red Teaming Routine where we will be demonstrating whole activity that is done during AD Penetration Testing. So Let’s go on and discover the secrets of Active Directory.
Active Directory Introduction
Active Directory Basics
Components of Active Directory
Active Directory hierarchical structure.
Active Directory Database.
Flexible Single Master Operations (FSMO)Role
Active Directory Services.
Some useful Tool
2. Active Directory is a Directory Service which Contains Information of All User Accounts and Shared Recourses on a Network. Active Directory is a Centralized Hierarchical Directory Database ACTIVE DIRECTORY
3.
4. 1.Provide User Logon and Authentication Services 2.To organize and manage: User Accounts Computers Groups and Network Resources 3 Enables authorized Users to easily locate: Network Resources PURPOSE OF ACTIVE DIRECTORY
5. 1.Fully Integrated Security 2.Easy Administration using Group Policy 3.Scalable to any Size Network 4.Flexible 1.Rename Computer Name and Domain Names 2.Cross-Forest Trust Relationship 3.Site-To-Site Replication is Faster 4.Active Directory Application Mode (ADAM) FEATURES OF ACTIVE DIRECTORY NEW FEATURES IN ACTIVE DIRECTORY 2003
6. How Directory Service Evolved Server (Directory System Agent) D irectory I nfo B ase D irectory I nfo T ree Backup Server Client (D irectory U ser A gent ) DAP DOP D irectory O rganization Management P rotocol Earlier we had no DATABASE Standard So ITU & ISO introduced X.500
7. DAP Directory Access Protocol is based on OSI Layers LDAP Lightweight Directory Access Protocol based on TCP/IP Layer DAP was introduced in BANYAN VINES It named the Database as STREET TALK LDAP was first Introduced in NOVELL Novell named it NDS ( Network Directory Services
9. Domains: Trees, Forests, Trusts, and Outs Active Directory is made up of one or more domains. Creating the initial domain controller in a network also creates the domain—you cannot have a domain without at least one domain controller. Each domain in the directory is identified by a DNS domain name. You use the Active Directory Domains and Trusts tool to manage domains. Domains: Trees, Forests Active Directory is made up of one or more domains. Creating the initial domain controller in a network also creates the domain—you cannot have a domain without at least one domain controller. Each domain in the directory is identified by a DNS domain name. You use the Active Directory Domains and Trusts tool to manage domains.