May 21, 2024, 6:07 p.m. | /u/shellsmoke


Short background: I work as a senior pentester (consulting, not internal) doing primarily network and assumed breach pentests for my clients.

The last few weeks I've been working an assumed breach test for a client and was able to privesc fairly quickly into the test. Nothing strange there, typical client AD weak/misconfigs.

While doing post-ex recon on the domain, I noticed something very strange when running BloodHound. Typically, the first thing I do after importing my collection zip into BH …

active directory assumed breach breach client clients consulting cybersecurity directory doing internal network nothing pentester pentests privesc quickly recon test work working

Information Technology Specialist I, LACERA: Information Security Engineer

@ Los Angeles County Employees Retirement Association (LACERA) | Pasadena, CA

Manager Pentest H/F

@ Hifield | Sèvres, France

Information System Security Officer

@ Parsons Corporation | USA VA Chantilly (Client Site)

Vulnerability Analyst, Mid

@ Booz Allen Hamilton | USA, VA, McLean (8283 Greensboro Dr, Hamilton)

SAP Security and Compliance Auditor

@ Bosch Group | Warszawa, Poland

Head of Product Security (Business team)

@ Zalando | Berlin