Domain administrators (also known as 'da's ,for short ) are the crown jewels of Active Directory. Responsible for complete administrative control over the domain, they are the one account attackers are after. The power of a domain admin is still often misused during administration, especially when an account needs sufficient privileges to perform a particular activity. Till date, the domain admin privileges are still directly or indirectly granted to end users, but are seldom revoked.
Observe the different mismanagement and misconfigration practices in daily administration activities that cause the leakage or exposure of domain admin privileges.
Perform hands-on, the simulation of different attack tactics employed by attackers to escalate privileges to a domain admin.
Employ an end to end security strategy to safeguard all admin accounts (including domain admins) from misuse.
Zoho Corporation Pvt. Ltd. All rights reserved.