Yaksas Security

Cyber Security Research

  • Yaksas Security Home
  • Home
  • Yaksas Security Classroom
  • Learn Adversary Emulation
  • Contact Yaksas
AD Exploitation using ADSI – Part 1 (Introduction)

Uday Mittal July 8, 2020 Leave a Comment

AD Exploitation using ADSI – Part 1 (Introduction)

Active Directory Service Interfaces (ADSI) – A set of Component Object Model (COM) interfaces for managing Active Directory services. It can be utilized in several scripting and programming languages.

  • Enables reading, adding and managing Active Directory Objects
  • Part of .NET framework:
    • System.DirectoryServices.DirectoryEntry (ADSI)
    • System.DirectoryServices.DirectorySearcher (ADSISearcher)
  • Can be accessed via PowerShell by creating objects for above classes
  • Example:
    • $domain = New-Object –TypeName System.DirectoryServices.DirectoryEntry

OR

    • $domain2 = [System.DirectoryServices.DirectoryEntry]”LDAP://dc=ycsccorp,dc=local”

OR

    • $domain3 = [ADSI]”LDAP://dc=ycsccorp,dc=local”

Using ADSI

  • Creating OU
    • $domainOU = $domain1.Create(“organizationalUnit”,”ou=YCSCTest”)
    • $domainOU.SetInfo()
  • Creating User
    • $domainUser = $domain1.Create(“user”,”cn=YCSCUser”)
    • $domainOU.SetInfo()

Pros and Cons

  • Pros
    • It is available on most Windows machines by default
    • Does not require AD-Module, RSAT or any other special libraries
    • Not easily detected
    • Can be used to create custom tools leveraging ADSI and ADSISearcher
  • Cons
    • Takes some time to learn
    • Lack of documentation

To learn about the Active Directory architecture used in this lab click here.

Watch the video

 

Related Posts

  • SPN Scanning using ADSI (Part 3)SPN Scanning using ADSI (Part 3)
  • ADSISearcher (Part 2)ADSISearcher (Part 2)
mm
Uday Mittal

Uday Mittal is a cybersecurity professional with rich working experience working with various industries including telecom, publishing, consulting and finance. He holds internationally recognized certifications such as CRTP, OSCE, OSCP, CISSP, CISA, CISM, CRISC among others. He speaks on cybersecurity awareness, offensive security research etc. and has authored various articles on topics related to cyber security and software development for a leading magazine on open source software.

Filed Under: ADSI Tagged With: active direcgtory, adsi, adsisearcher, enumeration, powershell

Optin Form

Search

Follow us on Twitter

My Tweets

Categories

Tags

(ISC)2 Active directory adsecurity adsi adsisearcher adversary emulation Android attack active directory awareness blue whale challenge Certification CISSP Cloud security crte crtp cyber-warfare cybersecurity Cyber Security Cybersecurity books domain enumeration ethical hacking forest enumeration hacker Information Security ISACA Kali Linux Mobile Security Narendra Modi NSA offensive security Online Safety opsec Password Penetration Testing pentest powersploit Powerview privacy red team red teaming Risk Management Social Engineering user enumeration Wifi Windows

Top Posts

  • Mona.py for exploit devs: 6 must know commands
    Mona.py for exploit devs: 6 must know commands
  • What is Adversary Emulation?
    What is Adversary Emulation?
  • Build Your Career in Cyber Security
    Build Your Career in Cyber Security
  • CISA: Everything You Need to Know
    CISA: Everything You Need to Know
  • Let there be no more MMS Scandals
    Let there be no more MMS Scandals
  • 7 Ways to Cover Your Device's Camera
    7 Ways to Cover Your Device's Camera

© Copyright 2020 ElliteDevs · All Rights Reserved · Powered by WordPress