all InfoSec news
ShadowSpray - A Tool To Spray Shadow Credentials Across An Entire Domain In Hopes Of Abusing Long Forgotten GenericWrite/GenericAll DACLs Over Other Objects In The Domain
May 15, 2023, 12:30 p.m. | noreply@blogger.com (Unknown)
KitPloit - PenTest Tools! www.kitploit.com
A tool to spray Shadow Credentials across an entire domain in hopes of abusing long forgotten GenericWrite/GenericAll DACLs over other objects in the domain.
Why this tool
In a lot of engagements I see (in BloodHound) that the group "Everyone" / "Authenticated Users" / "Domain Users" or some other wide group, which contains almost all the users in the domain, has some GenericWrite/GenericAll DACLs over other objects in the domain.
These rights can be abused to add Shadow Credentials …
abusing credentials domain shadow shadowspray spray stealth synchronization tool
More from www.kitploit.com / KitPloit - PenTest Tools!
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Information Security Engineers
@ D. E. Shaw Research | New York City
Cybersecurity Consultant- Governance, Risk, and Compliance team
@ EY | Tel Aviv, IL, 6706703
Professional Services Consultant
@ Zscaler | Escazú, Costa Rica
IT Security Analyst
@ Briggs & Stratton | Wauwatosa, WI, US, 53222
Cloud DevSecOps Engineer - Team Lead
@ Motorola Solutions | Krakow, Poland