dcsync▌
3 indexed skills · max 10 per page
detecting-dcsync-attack-in-active-directory
mukul975/Anthropic-Cybersecurity-Skills · detecting-dcsync-attack-in-active-directory
Detect DCSync attacks where adversaries abuse Active Directory replication privileges to extract password hashes by monitoring for non-domain-controller accounts requesting directory replication via DsGetNCChanges.
hunting-for-dcsync-attacks
mukul975/Anthropic-Cybersecurity-Skills · hunting-for-dcsync-attacks
Detect DCSync attacks by analyzing Windows Event ID 4662 for unauthorized DS-Replication-Get-Changes requests from non-domain-controller accounts.
conducting-domain-persistence-with-dcsync
mukul975/Anthropic-Cybersecurity-Skills · conducting-domain-persistence-with-dcsync
Perform DCSync attacks to replicate Active Directory credentials and establish domain persistence by extracting KRBTGT, Domain Admin, and service account hashes for Golden Ticket creation.