Update README.md
Rahmat Nurfauzi
GitHub
parent
fc63d74585
commit
bceb1d60e6
|
|
@ -19,12 +19,15 @@ This document was designed to be a useful, informational asset for those looking
|
|||
## Discovery
|
||||
### SPN Scanning
|
||||
* [SPN Scanning – Service Discovery without Network Port Scanning](https://adsecurity.org/?p=1508)
|
||||
* [Active Directory: PowerShell script to list all SPNs used](https://social.technet.microsoft.com/wiki/contents/articles/18996.active-directory-powershell-script-to-list-all-spns-used.aspx)
|
||||
* [Discovering Service Accounts Without Using Privileges](https://blog.stealthbits.com/discovering-service-accounts-without-using-privileges/)
|
||||
|
||||
### Data Mining
|
||||
* [A Data Hunting Overview](https://thevivi.net/2018/05/23/a-data-hunting-overview/)
|
||||
* [Push it, Push it Real Good](https://www.harmj0y.net/blog/redteaming/push-it-push-it-real-good/)
|
||||
* [Finding Sensitive Data on Domain SQL Servers using PowerUpSQL](https://blog.netspi.com/finding-sensitive-data-domain-sql-servers-using-powerupsql/)
|
||||
* [Sensitive Data Discovery in Email with MailSniper](https://www.youtube.com/watch?v=ZIOw_xfqkKM)
|
||||
* [Remotely Searching for Sensitive Files](https://www.fortynorthsecurity.com/remotely-search/)
|
||||
|
||||
### User Hunting
|
||||
* [Hidden Administrative Accounts: BloodHound to the Rescue](https://www.crowdstrike.com/blog/hidden-administrative-accounts-bloodhound-to-the-rescue/)
|
||||
|
|
@ -403,6 +406,7 @@ Advanced Threat Protection and Advanced Threat Analytics](https://www.blackhat.c
|
|||
|Password Spraying|4625: An account failed to log on<br>4771: Kerberos pre-authentication failed<br>4648: A logon was attempted using explicit credentials|
|
||||
|
||||
### Resources
|
||||
* [ASD Strategies to Mitigate Cyber Security Incidents](https://acsc.gov.au/publications/Mitigation_Strategies_2017.pdf)
|
||||
* [Reducing the Active Directory Attack Surface](https://docs.microsoft.com/en-us/windows-server/identity/ad-ds/plan/security-best-practices/reducing-the-active-directory-attack-surface)
|
||||
* [Securing Domain Controllers to Improve Active Directory Security](https://adsecurity.org/?p=3377)
|
||||
* [Securing Windows Workstations: Developing a Secure Baseline](https://adsecurity.org/?p=3299)
|
||||
|
|
|
|||
Loading…
Reference in New Issue