Active Directory

Manual Setup on AWS

On Virtual Box

https://1337red.wordpress.com/building-and-attacking-an-active-directory-lab-with-powershell/

Challenge Labs Review:

https://github.com/ryan412/ADLabsReview

Automated AD Lab Setup

Pre-requisites:

Azure Free Subscription
BadBlood
- Security tool for Active Directory. After BadBlood is run on a domain, security analysts and engineers can practice using tools to gain an understanding and to prescribe securing the Active Directory.
- https://github.com/davidprowe/BadBlood
AutomateLab
- Enables you to setup test and lab environments on Hyper-v or Azure with multiple products or just a single VM in a very short time.
- https://github.com/AutomatedLab/AutomatedLab
Setup Guide

Sysadmin Stuff

#Disable Internet Explorer Enhanced Security
function Disable-InternetExplorerESC {
    $AdminKey = "HKLM:\SOFTWARE\Microsoft\Active Setup\Installed Components\{A509B1A7-37EF-4b3f-8CFC-4F3A74704073}"
    $UserKey = "HKLM:\SOFTWARE\Microsoft\Active Setup\Installed Components\{A509B1A8-37EF-4b3f-8CFC-4F3A74704073}"
    Set-ItemProperty -Path $AdminKey -Name "IsInstalled" -Value 0
    Set-ItemProperty -Path $UserKey -Name "IsInstalled" -Value 0
    Stop-Process -Name Explorer
    Write-Host "IE Enhanced Security Configuration (ESC) has been disabled." -ForegroundColor Green
}Disable-InternetExplorerESC


#Set SPN for a service
setspn -a <logonname>/<hostname:any port> <logonname>
Get-ADUser <logon name> -Properties ServicePrincipalName

#SSL/TLS related errors
[Net.ServicePointManager]::SecurityProtocol = [Net.SecurityProtocolType]::Tls12

PreviousInitial Configuration NextAttack Vectors

Last updated 2 years ago