This attack path is "back to the basics". Here we focus on:
- enumeration of local and Active Directory users/groups
- weak credentials
- exploitable services
- exploitable scheduled tasks
- AS-REP roasting
- credential dumping
- staging payloads
- moving laterally
The attack video is here: https://youtu.be/jBfdlLybMek
0:00 OpenVPN Setup
18:10 MS01 Setup
1:01:40 Domain Controller Setup
1:18:53 MS02 Setup
1:35:19 Finish MS01 and Final Cleanup