Active Directory remains one of the most important systems in many environments. We review the areas attackers use most often: privileged groups, stale users, weak service account practices, dangerous delegation, legacy protocols, and domain controller exposure.
- Privileged group and nested membership review
- Service account and delegation review
- Stale users, groups, and computer cleanup guidance
- LDAP, LDAPS, Kerberos, and audit posture checks