Member-only story
TryHackMe writeup: Attacktive Directory
Active Directory is a Microsoft service that allows system administrators in medium-sized to large-sized organisations to store information about computer systems as object in a “directory.” This has made way for great convenience, but at the same time has also made way for another vulnerability vector by which to attack an organisation if not secured properly.
“tryhackme” (2020) published a room where they aim to teach their users a very short introduction to hacking Active Directory systems which can hopefully be useful for systems administrators and members of the blue team to secure the overall organisation. In this article, I will discuss my experiences doing this room.
Contents at a glance
- Background
- Procedure
- Discussion
- End matter
- References
Background
Active Directory is a product by Microsoft that “provides the methods for storing directory data and making this data available to network users and administrators” (Foulds et al 2022). One can imagine Active Directory as a central service that is used by system administrators organise networks of Windows PCs for large organisations. This is not just at a local network level — Active Directory can…
