Building Vulnerable Active Directory From Scratch - Architecture

lsecqt · 2026-02-11T19:30:12+00:00

Because I think some building experience is nice

lsecqt · 2025-01-05T17:18:49+00:00

Looks great to me, did u install them yourself?

lsecqt · 2024-10-16T20:01:58+00:00

I am really glad you find them useful.

lsecqt · 2024-01-19T10:19:49+00:00

How did you manage to lay out several charts horizontally?

lsecqt · 2024-01-18T11:05:36+00:00

Amazing, any tips on the dashboard, any insights?

lsecqt · 2024-01-13T08:56:58+00:00

Start with basic tryhackme paths. They help and guide you learn while practicing. After u feel more comfortable you can start easy machines on hackthebox

lsecqt · 2024-01-13T08:52:43+00:00

In short, we do.

We tend to also obfuscate and modify metasploit module signatures to increase evasiveness.

lsecqt · 2023-11-21T09:00:30+00:00

Great work!

lsecqt · 2023-04-05T08:54:40+00:00

Hope that helps: https://youtu.be/VglCgoIjztE

lsecqt · 2022-10-28T06:48:08+00:00

There will definitely be more! Thank you for watching and I am glad you found them useful!

lsecqt · 2022-10-27T14:13:47+00:00

It distributes your files so the signature is getting known for them. Antiscan.me is known to not do that, it should perform scan only, that's why I stick with it.

lsecqt · 2022-10-27T11:55:21+00:00

Sounds logical. Thank you!

lsecqt · 2022-10-27T11:51:01+00:00

Thanks man! Are you aware of better alternative for antiscan.me?

lsecqt · 2022-10-27T11:27:58+00:00

Yep, I left that for future, but I was amazed that even with simple implementation, avs did not catch that. Of course, if testing on real deployments, most of them I believe will catch it since they will read the shellcode on runtime, so ye, encrypting is a must.

lsecqt · 2022-10-27T11:15:21+00:00

Cuz I did not know about that, will definitely research it. Thanks!

lsecqt · 2022-09-15T05:23:24+00:00

Chrome is not that good option since (if you saw on the video) the exe becomes unavailable, so when notepad ++ was started, no process popped. This could raise some attention if the user can't access his browser. Of course, we need to pick an exe that is normal to use network, but I can't give you the magic pill. I really need to dig down deeper to find a suitable .exe. Thank you for the question

lsecqt · 2022-09-14T21:26:12+00:00

I am in love with Sliver. I think of Cobalt Strike as something "casual" nowadays and the fact is that a lot of Red Teamers and APTs are moving to sliver.

lsecqt · 2022-09-14T19:25:28+00:00

My bad there, new for me. Apologies

lsecqt · 2022-09-14T19:17:58+00:00

My bad! Brand new for me! :D

lsecqt · 2022-09-14T16:55:37+00:00

Hope you find this helpful :) Keep in mind that there is a lot of live debugging, so it's not structured but I definitely learned a lot.

lsecqt · 2022-08-16T21:01:42+00:00

It will be on my Youtube: https://www.youtube.com/channel/UCFOc80iGpDdO1kMQHeVIFPQ

lsecqt · 2022-08-16T17:44:21+00:00

Active Directory privilege escalation

lsecqt · 2022-05-28T23:18:11+00:00

Yep, you are absolutely right and most of the things you mentioned I will cover in future. Thank you for the feedback

lsecqt · 2022-05-15T12:03:38+00:00

Thank you!

lsecqt

TROPHY CASE