RFC - Offensive Security Notes

Active Directory
Initial Access
- VBA Macros
  - Mark-of-the-Web
Discovery
- Juicy files
  - PowerShell history
- Network Enumeration
Execution
Exploitation
- Win32 APIs
Credential Access
- Microsoft Windows
Lateral Movement
- Windows Lateral Movement
- Linux Lateral Movement
Persistence
Defence Evasion
Network Pivoting
- Proxies and port fowarding
- Network discovery and scanning
Exfiltration
- Windows
  - Copy files over SMB
Services
- MS SQL Server
Misc
- CrackMapExec
- Cheat sheets

Powered by GitBook

On this page

Active Directory

Enumeration

Verify connectivity to domain controller

PreviousPowerView 3.0 NextWMI domain enumeration through root\directory\ldap

Last updated 2 years ago

Test-NetConnection -Port 53 192.168.250.1