Building a Hands-on Active Directory Lab for Beginners
Tags
attack-pattern: Data Control Panel - T1218.002 Credentials - T1589.001 Dcsync - T1003.006 Dns - T1071.004 Dns - T1590.002 Dns Server - T1583.002 Dns Server - T1584.002 Domain Account - T1087.002 Domain Account - T1136.002 Domains - T1583.001 Domains - T1584.001 Hardware - T1592.001 Kerberoasting - T1558.003 Malware - T1587.001 Malware - T1588.001 Pass The Hash - T1550.002 Powershell - T1059.001 Remote Desktop Protocol - T1021.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 Tool - T1588.002 Vulnerabilities - T1588.006 Brute Force - T1110 Credential Dumping - T1003 Kerberoasting - T1208 Llmnr/Nbt-Ns Poisoning - T1171 Pass The Hash - T1075 Powershell - T1086 Remote Desktop Protocol - T1076
Show in Graph
Common Information
Type Value
UUID ad3b3119-56d3-452a-9c3c-aad4c91cbda2
Fingerprint b5384d11e0b36490
Analysis status DONE
Considered CTI value 0
Text language
Published Oct. 1, 2024, 10:43 p.m.
Added to db Oct. 2, 2024, 1:12 a.m.
Last updated Nov. 17, 2024, 7:44 p.m.
Headline Building a Hands-on Active Directory Lab for Beginners
Title Building a Hands-on Active Directory Lab for Beginners
Detected Hints/Tags/Attributes 108/1/41
Source URLs
Redirection Url
Details Source https://medium.com/@carltiya7/building-a-hands-on-active-directory-lab-for-beginners-26dbb1f8f80f?source=rss------cybersecurity-5
URL Provider
Details Provider Source level domain
Details medium.com medium.com
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 167 Cybersecurity on Medium https://medium.com/feed/tag/cybersecurity 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 5 
sysmon.zip
Details Domain 1 
procmon.zip
Details Domain 8 
download.sysinternals.com
Details Domain 1 
processmonitor.zip
Details Domain 4127 
github.com
Details Domain 2 
mimikatz.zip
Details Domain 1 
as.dl.wireshark.org
Details Domain 291 
raw.githubusercontent.com
Details File 478 
lsass.exe
Details File 5 
sysmon.zip
Details File 1 
procmon.zip
Details File 6 
mimikatz_trunk.zip
Details File 8 
download.sys
Details File 1 
c:\tools\sysmon.zip
Details File 1 
processmonitor.zip
Details File 1 
c:\tools\procmon.zip
Details File 1 
c:\tools\mimikatz.zip
Details File 108 
0.exe
Details File 1 
c:\tools\wireshark.exe
Details File 5 
sysmonconfig-export.xml
Details File 1 
c:\tools\sysmon\sysmonconfig-export.xml
Details File 1 
c:\tools\sysmon sysmon.exe
Details File 76 
mimikatz.exe
Details File 32 
powerview.ps1
Details File 29 
rubeus.exe
Details File 1 
tgs_hash.txt
Details File 1 
c:\tools\mimikatz\x64 mimikatz.exe
Details File 1 
purpleknight.exe
Details File 1208 
powershell.exe
Details File 2125 
cmd.exe
Details Github username 29 
gentilkiwi
Details Github username 6 
swiftonsecurity
Details IPv4 45 
192.168.1.10
Details IPv4 141 
255.255.255.0
Details IPv4 16 
192.168.1.20
Details IPv4 295 
8.8.8.8
Details Url 2 
https://download.sysinternals.com/files/sysmon.zip
Details Url 1 
https://download.sysinternals.com/files/processmonitor.zip
Details Url 1 
https://github.com/gentilkiwi/mimikatz/releases/latest/download/mimikatz_trunk.zip
Details Url 1 
https://1.as.dl.wireshark.org/win64/wireshark-win64-4.0.0.exe
Details Url 2 
https://raw.githubusercontent.com/swiftonsecurity/sysmon-config/master/sysmonconfig-export.xml