Tagged articles

Active Directory

8 articles · Page 1 of 1
Black & White Path
Black & White Path
Jun 23, 2026 · Information Security

AI‑Driven Active Directory Penetration Testing: A Complete Step‑by‑Step Walkthrough

This article demonstrates how to conduct a full Active Directory penetration test using HexStrike AI, Claude Desktop, and NetExec, where natural‑language prompts replace manual commands to enumerate users and groups, perform AS‑REP and Kerberoasting attacks, crack hashes, spray passwords, gain Domain Admin rights, extract credentials, establish persistence, and finally provide defensive recommendations based on the observed artifacts.

AI AutomationActive DirectoryClaude Desktop
0 likes · 31 min read
AI‑Driven Active Directory Penetration Testing: A Complete Step‑by‑Step Walkthrough
Black & White Path
Black & White Path
Jun 18, 2026 · Information Security

ADPulse: Open‑Source Read‑Only AD Security Scanner with 35 Checks

ADPulse is an open‑source, read‑only Active Directory security scanner that runs 35 built‑in checks, provides a 100‑point risk score, supports Pass‑the‑Hash authentication, and generates console, JSON, or self‑contained HTML reports with a single command, making it suitable for quick AD health assessments and penetration‑test reconnaissance.

AD auditActive DirectoryPass-the-Hash
0 likes · 8 min read
ADPulse: Open‑Source Read‑Only AD Security Scanner with 35 Checks
Black & White Path
Black & White Path
May 27, 2026 · Information Security

Five AD Permission Misconfigurations That Let Attackers Escalate to Domain Admin Without Exploits

The article explains how misconfigured Active Directory DACL entries enable five distinct privilege‑escalation paths—ForceChangePassword, FullControl on Domain Admins, DCSync, WriteMembers, and GUID‑based ACE writes—demonstrating each step with impacket commands, showing detection events, and offering concrete defense recommendations.

Active DirectoryBloodHoundDACL
0 likes · 17 min read
Five AD Permission Misconfigurations That Let Attackers Escalate to Domain Admin Without Exploits
Efficient Ops
Efficient Ops
Dec 29, 2022 · Information Security

Mastering AD Domain Security: Attack Techniques and Defense Strategies

This article explains how Active Directory domains work, outlines over 220 attack techniques such as SPN scanning, password spraying, Kerberoasting, DCSync, and privilege‑escalation exploits, and then presents comprehensive defense measures including attack‑surface reduction, strict admin hygiene, network isolation, honeypots, and continuous monitoring.

Active DirectoryAttack TechniquesDefense Strategies
0 likes · 15 min read
Mastering AD Domain Security: Attack Techniques and Defense Strategies
Tencent Cloud Developer
Tencent Cloud Developer
Feb 16, 2017 · Databases

Building a SQL Cluster on Tencent Cloud (QCloud) – Step‑by‑Step Guide

In this step‑by‑step guide, Microsoft MVP Li Sida shows how to build a two‑node SQL Server cluster on Tencent Cloud by creating a private VPC, setting up an Active Directory domain controller, configuring shared storage, joining the SQL nodes, and addressing common Chinese‑cloud quirks such as sysprep and SID duplication.

Active DirectorySQL ClusterTencent Cloud
0 likes · 7 min read
Building a SQL Cluster on Tencent Cloud (QCloud) – Step‑by‑Step Guide
Efficient Ops
Efficient Ops
Apr 21, 2016 · Information Security

Should Your Enterprise Join an AD Domain? Survey Results and Expert Insights

This article analyzes whether enterprises should adopt Active Directory domains by presenting a survey of 110 companies, highlighting the reasons for and against domain integration, and sharing expert opinions on the benefits, risks, and management considerations involved.

Active DirectoryDomain Adoptionmanagement
0 likes · 13 min read
Should Your Enterprise Join an AD Domain? Survey Results and Expert Insights