Active Directory security interesting links
This is 3 very interesting links/articles about Active Directory and authentication :
- CredCrack : this is a python script that uses the powershell script Invoke-Mimikatz.ps1.
CredCrack is a fast and stealthy credential harvester. It exfiltrates credentials recusively in memory and in the clear. Upon completion, CredCrack will parse and output the credentials while identifying any domain administrators obtained. CredCrack also comes with the ability to list and enumerate share access and yes, it is threaded! CredCrack has been tested and runs with the tools found natively in Kali Linux
Invoke-Mimikatz.ps1 script leverages Mimikatz 2.0 and Invoke-ReflectivePEInjection to reflectively load Mimikatz completely in memory. This allows you to do things such as
dump credentials without ever writing the mimikatz binary to disk.
The script has a ComputerName parameter which allows it to be executed against multiple computers.
- NTLM Over HTTP Negotiation Grab Hash : Waits For Connections Negotiates NTLM Over HTTP using predefined nonce
- Active Directory Kerberos Unconstrained Delegation : danger in having Kerberos Unconstrained Delegation configured in the environment.