Gaining Domain Admin from Outside Active Directory
“... mitigations such as using LAPS to manage local administrator passwords and setting FilterAdministratorToken to prevent SMB logins using the local RID 500 account...”
https://twitter.com/x0rz/status/970656354544254976?s=21
No comments:
Post a Comment