Assume Breach: Practical Active Directory Abuses

BSides Myanmar · 202057:12376 viewsPublished 2021-01Watch on YouTube ↗

Speakers

Ko Steve Nyan Lin

Tags

CategoryTechnical

TopicActive Directory

TeamRed

StyleTalk

Show transcript [en]

[Music] of interest or the rating operation apo active directory yet configuration active territory or organizational

[Music]

why

movement

[Music]

foreign [Music]

[Music]

local mri school called the pa student or a user dp or us a ufc jam server term servo dot admin right trade and probably let's rock the rdp user [Music]

[Music]

foreign

[Music]

high [Music]

[Music]

data [Music]

[Music]

impurity the delegation constraint delegation will enable life is located in the trusted for to authenticate for delegation flag the msds allowed to delegation to surrey attribute

and internet community this attribute

[Music] foreign

[Music] [Music]

[Music]

is [Music]

[Music]

the

[Music]

the

[Music]

[Music] sorry service

[Music]

foreign [Music] [Music]

[Music]

foreign

[Music]

[Music] security company [Music]

foreign

[Music]

[Music] foreign

foreign

[Music]

[Music] foreign

foreign

[Music]

okay okay okay uh do you know what we are how to recover when golden ticket is deaf do you know what is the most easiest way to execute such recovery you know i need to know [Music]

[Music]

what is the most easiest way to for such recovery a minimal operating impact operating impact [Music] recovery focus

oh [Music]

[Music]

okay

[Music]

any other best practice suggestion for ad besides deploying security patches using av disable iu services accounts lease privileges okay good now [Music]

[Music]

okay [Music]

okay may

okay

okay turn on screen shell share with you let me know

Assume Breach: Practical Active Directory Abuses

Related talks