Red Team Village - OU Having a Laugh? - TIB AV-Portal

Red Team Village - OU Having a Laugh?

16

Koutrompis, Petros

Formal Metadata

Title

Red Team Village - OU Having a Laugh?

Title of Series

DEF CON Safe Mode

Number of Parts

374

Author

Koutrompis, Petros

License

CC Attribution 3.0 Unported:
You are free to use, adapt and copy, distribute and transmit the work or content in adapted or unchanged form for any legal purpose as long as the work is attributed to the author in the manner specified by the author or licensor.

Identifiers

10.5446/49184 (DOI)

Publisher

Release Date

Language

Content Metadata

Subject Area

Computer Science

Genre

Conference/Talk

Abstract

Whether you are trying to attack or defend Active Directory, BloodHound has been the default tool for identifying attack paths. With its latest release, BloodHound3 has introduced a number of new edges including the collection of ACLs for Organizational Units. In this talk we will present a method to abuse edit rights on an OU by serving malicious Group Policy Objects in order to compromise any computer or user object that is a member of the vulnerable OU or any of its child OUs.