Lab of a Penetration Tester
Home of Nikhil "SamratAshok" Mittal
Thursday, April 18, 2019
How NOT to use the PAM trust - Leveraging Shadow Principals for Cross Forest Attacks
I did a super interesting AD security assessment for a client recently. They are re-deploying their infrastructure and upgrading their for...
Wednesday, October 31, 2018
Using ActiveDirectory module for Domain Enumeration from PowerShell Constrained Language Mode
This is a quick post to make notes of something which I have been using and teaching for sometime. We can use Micorosft's PowerShell ...
Tuesday, October 16, 2018
Forging Trusts for Deception in Active Directory
Deception has always been of interest to me. As a student of military history, I have always been fascinated by its implementation in warfar...
Thursday, May 3, 2018
Silently turn off Active Directory Auditing using DCShadow
My fascination with DCShadow continues, thanks to Vincent and Benjamin . I blogged about it previously as well. One very interestin...
Friday, April 6, 2018
DCShadow - Minimal permissions, Active Directory Deception, Shadowception and more
DCShadow is an awesome persistence technique introduced by Vincent and Benjamin at BluteHat IL and it can be executed with the help o...
View web version