tag:blogger.com,1999:blog-5043195767541326568.post1528825538462078973..comments2024-03-21T00:16:20.166-07:00Comments on Mark R. Gamache's Random Blog: Detecting Attackers in a Windows Active Directory NetworkMark Gamachehttp://www.blogger.com/profile/12517057928398775070noreply@blogger.comBlogger6125tag:blogger.com,1999:blog-5043195767541326568.post-11241429486011355052018-04-01T09:09:14.291-07:002018-04-01T09:09:14.291-07:00Very good read. I use bloodhound and crackmapexec ...Very good read. I use bloodhound and crackmapexec - never failed in my pentest engagements. Still waiting for your blinding enumeration tools article..,Anonymoushttps://www.blogger.com/profile/14790573963126180612noreply@blogger.comtag:blogger.com,1999:blog-5043195767541326568.post-57530861212699264542017-12-22T10:42:20.345-08:002017-12-22T10:42:20.345-08:00@chirag jindal There is generally no specific even...@chirag jindal There is generally no specific event here. If you are logging AD queries, you can see a query returning the group and members, but tons of things will do that. Mark Gamachehttps://www.blogger.com/profile/12517057928398775070noreply@blogger.comtag:blogger.com,1999:blog-5043195767541326568.post-60910696479890934212017-12-21T20:08:19.843-08:002017-12-21T20:08:19.843-08:00Hi,
Can someone tell event id generated if someon...Hi,<br /><br />Can someone tell event id generated if someone enumerates domain admins from a system within network.Chirag jindalhttps://www.blogger.com/profile/12735373294605188233noreply@blogger.comtag:blogger.com,1999:blog-5043195767541326568.post-36499846664229705872017-09-05T10:38:30.057-07:002017-09-05T10:38:30.057-07:00@Seemant Yes this has been tested on most of the ...@Seemant Yes this has been tested on most of the OSs that MS says it works on. No issues found.Mark Gamachehttps://www.blogger.com/profile/12517057928398775070noreply@blogger.comtag:blogger.com,1999:blog-5043195767541326568.post-82347655169376894372017-08-29T22:13:45.108-07:002017-08-29T22:13:45.108-07:00Good work... Really liked the post... :)
Have you ...Good work... Really liked the post... :)<br />Have you tested same in a live environment where we have multiple OS flavors? Anonymoushttps://www.blogger.com/profile/04399234031201376644noreply@blogger.comtag:blogger.com,1999:blog-5043195767541326568.post-46041159194494610822017-08-28T09:16:52.468-07:002017-08-28T09:16:52.468-07:00Nice!Nice!Anonymoushttps://www.blogger.com/profile/16241530292451225940noreply@blogger.com