Abuse ACL access over groups
Use access rights over a group to add users
Tag: Lateral Movement
Abuse ACL Access over User
Use access rights over a user to take over that user account.
Categories:
ACL Abuse
Abuse of ACL access rights to achieve lateral movement
Categories:
ASREProasting
Take advantage of users with no Kerberos pre-authentication requirements and recover their password
Categories:
Group Managed Service Account
Read the NT password hash of Group Managed Service Accounts (gMSA)
Categories:
Kerberoasting
The classic AD privilege escalation technique to crack the passwords of service accounts offline
Categories:
Kerberos
Abusing the ticket-based authentication and authorization protocol that governs the operation of Active Directory
Categories:
Lateral Movement and Privilege Escalation
Move from account to account, service to service, and machine to machine while escalating your privileges until you compromise the domain.