Beyond the MCSE Red Teaming Active Directory
DEFCON-24-Sean-Metcalf-Beyond-The-MCSE-Red-Teaming-Active-Directory
DEFCON-24-Sean-Metcalf-Beyond-The-MCSE-Red-Teaming-Active-Directory
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
Fun with User Attributes: SID History<br />
• SID History attribute supports migration<br />
scenarios.<br />
• Security principals have SIDs determine<br />
permissions & resources access.<br />
• Enables access for one account to effectively<br />
be cloned to ano<strong>the</strong>r.<br />
• Works for SIDs in <strong>the</strong> same domain as well as<br />
across domains in <strong>the</strong> same forest.<br />
| @PryoTek3 | sean @ adsecurity.org |