• [ACL] ForceChangePassword Abuse 08/04/2022
• [ACL] GenericAll, GenericWrite and Dacl Abuse 02/04/2022
• [ACL] ReadGMSAPassword Abuse 05/05/2022
• [ACL] WriteOwner Abuse 02/04/2022
• [AD CS] 01 - Introduction 02/08/2023
• [AD CS] Misconfigured Certificate Template Exploit 02/08/2023
• [AD CS] NTLM Relaying to ADCS HTTP Endpoints 02/08/2023
• [AD CS] User & Computer Persistence 02/08/2023
• [Credential Theft] 01 - Introduction 26/07/2023
• [Credential Theft] DCSync Attack 09/03/2022
• [Credential Theft] Domain Cache Credentials 29/07/2023
• [Credential Theft] Extracting Kerberos Tickets 29/07/2023
• [Credential Theft] Kerberos Encryption Keys 29/07/2023
• [Credential Theft] NTLM Hashes 29/07/2023
• [Credential Theft] Security Account Manager 29/07/2023
• [CVE-2021-42278 / CVE-2021-42287] noPac Exploit 29/04/2022
• [Domain Dominance] Diamond Ticket 29/07/2023
• [Domain Dominance] Golden Ticket 29/07/2023
• [Domain Dominance] Silver Ticket 29/07/2023
• [Kerberos] 01 - Introduction 01/08/2023
• [Kerberos] AllowToDelegate Abuse (Constrained Delegation) 05/05/2022
• [Kerberos] AS-REP Roasting 05/02/2022
• [Kerberos] Constrained Delegation 01/08/2023
• [Kerberos] Kerberoasting 09/03/2022
• [Kerberos] Resource-Based Constrained Delegation (RBCD) 01/08/2023
• [Kerberos] S4U2Self Abuse 01/08/2023
• [Kerberos] Shadow Credentials 01/08/2023
• [Kerberos] Unconstrained Delegation 01/08/2023
• [MS14-068] Microsoft Kerberos Checksum Validation Vulnerability Exploit 16/04/2022
• AD Recycle Abuse 17/04/2022
• AdminSDHolder Modification 09/03/2022
• From DnsAdmins to SYSTEM to Domain Compromise 30/03/2022
• Golden Ticket 09/03/2022
• Ntds.dit Password Extraction 09/03/2022
• Pass-Attack 06/03/2022
• Password Spraying 06/03/2022
• Plaintext Password Extraction through Group Policy Preferences (GPP) 06/03/2022