[2], allowing inter-operable account migration between domains (e.g., all values in SID-History are included in access tokens).With Domain Administrator (or equivalent) rights, harvested or well-known SID values may be inserted into SID-History to enable impersonation of arbitrary users/groups such as Enterprise Administrators. This manipulation may result in elevated access to local resources and/or access to otherwise inaccessible domains via lateral movement techniques such as Remote Services, SMB/Windows Admin Shares, or Windows Remote Management.">
产品 | 依赖关系 | 数据源 | 访问所需的 | 协议 | 收集的数据 | 笔记 |
---|---|---|---|---|---|---|
Tenable.ad | 活动目录 | 用户身份验证的广告 | LDAP | 与SID-History域用户列表 |
框架:主教法冠ATT&CK
技术:访问令牌操作
Sub-Technique:SID-History注入
平台:窗户
产品要求:Tenable.ad
站得住脚的发布日期:2022年第二季度