{"version":1,"pages":[{"id":"-LzDYkME5X4FU_uWfLOY","title":"Active Directory","pathname":"/internalpentest","siteSpaceId":"sitesp_89FW2","description":"Active Directory Attacks","breadcrumbs":[{"label":"Internal pentest"}]},{"id":"-LzDeI3k7eSwMivhFrJy","title":"Core Concepts","pathname":"/internalpentest/internal-pentest/active-directory/introduction","siteSpaceId":"sitesp_89FW2","description":"This page is an intro to basic concepts of active directory","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"}]},{"id":"-M0b1sJbcAxbAuwnWm-v","title":"Domain Controllers","pathname":"/internalpentest/internal-pentest/active-directory/introduction/domain-controllers","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"},{"label":"Core Concepts"}]},{"id":"-M0b6_VZxOzGaLATwcuD","title":"AD DS Data Store","pathname":"/internalpentest/internal-pentest/active-directory/introduction/ad-ds-data-store","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"},{"label":"Core Concepts"}]},{"id":"-M0bAmdV1N7vTBebHR5M","title":"AD DS Schema","pathname":"/internalpentest/internal-pentest/active-directory/introduction/ad-ds-schema","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"},{"label":"Core Concepts"}]},{"id":"-LzkwYGygmELSFVV9jVQ","title":"Attributes","pathname":"/internalpentest/internal-pentest/active-directory/introduction/attributes","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"},{"label":"Core Concepts"}]},{"id":"-Lzl88WXdzju4vbM7cLW","title":"Containers and Leaves","pathname":"/internalpentest/internal-pentest/active-directory/introduction/untitled","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"},{"label":"Core Concepts"}]},{"id":"-LzlLwXYRvqkORM7KH2O","title":"Object Names and Identities","pathname":"/internalpentest/internal-pentest/active-directory/introduction/object-names-and-identities","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"},{"label":"Core Concepts"}]},{"id":"-LzlkPG_qd9KP2NY5bAS","title":"Directory Partitions/Naming Contexts","pathname":"/internalpentest/internal-pentest/active-directory/introduction/directory-partitions-naming-contexts","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"},{"label":"Core Concepts"}]},{"id":"-Lzm4WYeeVBSB9LUSB4Z","title":"Oraganizational Units, Namespaces, domains, domain trees, forests and trust relationships","pathname":"/internalpentest/internal-pentest/active-directory/introduction/namespaces-domain-trees-and-forests","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"},{"label":"Core Concepts"}]},{"id":"-M-ADPn94Pwkhmqrv-14","title":"Reconnaissance","pathname":"/internalpentest/internal-pentest/active-directory/domain-name-and-domain-controllers","siteSpaceId":"sitesp_89FW2","description":"This page discusses ways of finding Domain names and Domain Controllers ... with or without a domain user, depending on the situation you're in.","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"}]},{"id":"-M0bwNgmvtSWMZagu4Yv","title":"Initial attack vectors","pathname":"/internalpentest/internal-pentest/active-directory/initial-attack-vectors","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"}]},{"id":"-M0byj_wt7q_-FJrmE6Y","title":"LLMNR/NBT-NS Poisoning","pathname":"/internalpentest/internal-pentest/active-directory/initial-attack-vectors/llmnr-nbt-ns-poisoning","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"},{"label":"Initial attack vectors"}]},{"id":"-M0cIEQu5OtZQ5Lcafd0","title":"Intercept and Hashcat","pathname":"/internalpentest/internal-pentest/active-directory/initial-attack-vectors/llmnr-nbt-ns-poisoning/intercept-and-hashcat","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"},{"label":"Initial attack vectors"},{"label":"LLMNR/NBT-NS Poisoning"}]},{"id":"-M0cIjPiY50wrAvYy4ht","title":"SMB relay","pathname":"/internalpentest/internal-pentest/active-directory/initial-attack-vectors/llmnr-nbt-ns-poisoning/smb-relay","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"},{"label":"Initial attack vectors"},{"label":"LLMNR/NBT-NS Poisoning"}]},{"id":"-M0vchwaJKuiOsUejBXJ","title":"IPv6 Attacks","pathname":"/internalpentest/internal-pentest/active-directory/initial-attack-vectors/ipv6-attacks","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"},{"label":"Initial attack vectors"}]},{"id":"-M0wJlgI1BdUy_lsa8CV","title":"Basic attack","pathname":"/internalpentest/internal-pentest/active-directory/initial-attack-vectors/ipv6-attacks/basic-attack","siteSpaceId":"sitesp_89FW2","description":"This page describes how you can compromise IPv4 networks via IPv6","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"},{"label":"Initial attack vectors"},{"label":"IPv6 Attacks"}]},{"id":"-M0wqo6anxYajT_sbHfl","title":"Combining NTLM Relaying and Kerberos delegation","pathname":"/internalpentest/internal-pentest/active-directory/initial-attack-vectors/ipv6-attacks/combining-ntlm-relaying-and-kerberos-delegation","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"},{"label":"Initial attack vectors"},{"label":"IPv6 Attacks"}]},{"id":"-M11BDgKVjv-AdWAH_5-","title":"Other attack vectors and strategies","pathname":"/internalpentest/internal-pentest/active-directory/initial-attack-vectors/ipv6-attacks/other-attack-vectors-and-strategies","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"},{"label":"Initial attack vectors"},{"label":"IPv6 Attacks"}]},{"id":"-M4nq3qgQbJkoYdkc0x1","title":"ASREPRoast","pathname":"/internalpentest/internal-pentest/active-directory/initial-attack-vectors/asreproast","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"},{"label":"Initial attack vectors"}]},{"id":"-MiaQcbTfq_X5j-m0ZdB","title":"ADCS + PetitPotal NTLM Relay","pathname":"/internalpentest/internal-pentest/active-directory/initial-attack-vectors/adcs-+-petitpotal-ntlm-relay","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"},{"label":"Initial attack vectors"}]},{"id":"-LzJDFgFI_dr_ocQky2V","title":"Post-Compromise Enumeration","pathname":"/internalpentest/internal-pentest/active-directory/reconnaissance","siteSpaceId":"sitesp_89FW2","description":"This following pages discuss enumeration techniques once you have compromised an account/accounts and you have footstep in the network","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"}]},{"id":"-M15UsM_NT4LlJld_Ypg","title":"Powerview","pathname":"/internalpentest/internal-pentest/active-directory/reconnaissance/powerview","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"},{"label":"Post-Compromise Enumeration"}]},{"id":"-M2-6YePv-UvlfL_IhGh","title":"PingCastle","pathname":"/internalpentest/internal-pentest/active-directory/reconnaissance/pingcastle","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"},{"label":"Post-Compromise Enumeration"}]},{"id":"-M15vxveyMXUFDa_boU4","title":"BloodHound","pathname":"/internalpentest/internal-pentest/active-directory/reconnaissance/bloodhound","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"},{"label":"Post-Compromise Enumeration"}]},{"id":"-M16CW0KcICseR6Rtdcs","title":"Other","pathname":"/internalpentest/internal-pentest/active-directory/reconnaissance/other","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"},{"label":"Post-Compromise Enumeration"}]},{"id":"-M16CrRLx0_6vfWPLW6_","title":"Post-Compromise Attacks","pathname":"/internalpentest/internal-pentest/active-directory/post-compromise-attacks","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"}]},{"id":"-M16IWcsUr-wbwRjQYEU","title":"Pass the Password","pathname":"/internalpentest/internal-pentest/active-directory/post-compromise-attacks/pass-the-password-pass-the-hash","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"},{"label":"Post-Compromise Attacks"}]},{"id":"-M16SIbQRH1YjmBO3jkR","title":"Pass the hash","pathname":"/internalpentest/internal-pentest/active-directory/post-compromise-attacks/pass-the-hash","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"},{"label":"Post-Compromise Attacks"}]},{"id":"-M1AFxLZUVGGPRxQ9gNM","title":"Token impersonation","pathname":"/internalpentest/internal-pentest/active-directory/post-compromise-attacks/token-impersonation","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"},{"label":"Post-Compromise Attacks"}]},{"id":"-M4k-O-7l56fv3OqLdsH","title":"ASREPRoast","pathname":"/internalpentest/internal-pentest/active-directory/post-compromise-attacks/asreproast","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"},{"label":"Post-Compromise Attacks"}]},{"id":"-M1AOYGaOlhOizQ91M6_","title":"Kerberoasting","pathname":"/internalpentest/internal-pentest/active-directory/post-compromise-attacks/kerberoasting","siteSpaceId":"sitesp_89FW2","description":"This page deals with compromising Active Directory with Kerberoast attack.","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"},{"label":"Post-Compromise Attacks"}]},{"id":"-M4kU6HbhvyObpAjbiz6","title":"DCSync","pathname":"/internalpentest/internal-pentest/active-directory/post-compromise-attacks/dcsync","siteSpaceId":"sitesp_89FW2","description":"Extracting User Password Data","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"},{"label":"Post-Compromise Attacks"}]},{"id":"-M4kZs6OHA8LKl9JLYh4","title":"DCShadow","pathname":"/internalpentest/internal-pentest/active-directory/post-compromise-attacks/dcshadow","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"},{"label":"Post-Compromise Attacks"}]},{"id":"-M1BDbJ3ufGkGXqx4QTU","title":"GPP attacks","pathname":"/internalpentest/internal-pentest/active-directory/post-compromise-attacks/gpp-attacks","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"},{"label":"Post-Compromise Attacks"}]},{"id":"-M1Bb_KXR57-un7UUMqt","title":"Golden tickets","pathname":"/internalpentest/internal-pentest/active-directory/post-compromise-attacks/golden-tickets","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"},{"label":"Post-Compromise Attacks"}]},{"id":"-MiaRASE_gq_PXBXfSM1","title":"PrintNightmare","pathname":"/internalpentest/internal-pentest/active-directory/post-compromise-attacks/printnightmare","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"},{"label":"Post-Compromise Attacks"}]},{"id":"-MPnbSPiOSr-TN6ILZo5","title":"Other Lateral movements and attacks","pathname":"/internalpentest/internal-pentest/active-directory/post-compromise-attacks/other-lateral-movements-and-attacks","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"},{"label":"Post-Compromise Attacks"}]},{"id":"-M1G4JJu3jYvLlSM19IQ","title":"MISC","pathname":"/internalpentest/internal-pentest/active-directory/misc","siteSpaceId":"sitesp_89FW2","description":"This page contains a collection of interesting links to cheat sheets, an assembly of articles ... that are useful as i covered only the basics","breadcrumbs":[{"label":"Internal pentest"},{"label":"Active Directory"}]},{"id":"-MPQ01jHShhQutfohQ8-","title":"Microsoft AZURE","pathname":"/internalpentest/cloud-pentesting/azure","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Cloud pentesting"}]},{"id":"-MPV6qo_Es09kg_6ktsk","title":"Definitions and fundamentals","pathname":"/internalpentest/cloud-pentesting/azure/definitions-and-fundamentals","siteSpaceId":"sitesp_89FW2","description":"This page is about general definitions and cloud/azure fundamentals","breadcrumbs":[{"label":"Cloud pentesting"},{"label":"Microsoft AZURE"}]},{"id":"-MPV6dOOovfw4SrIMmfW","title":"AWS","pathname":"/internalpentest/cloud-pentesting/microsoft-azure","siteSpaceId":"sitesp_89FW2","description":"","breadcrumbs":[{"label":"Cloud pentesting"}]}]}