專案資訊 #1067: Dangerous Permission over Accounts with Replication Rights - 01_外部專案 - MIS部門作業管理平台

動作

複製連結

專案資訊 #1067

進行中

專案資訊 #1064: 2025-PenTest

Dangerous Permission over Accounts with Replication Rights

是由 Joy Liao 於 3 個月前加入. 於 3 個月前更新.

狀態:

New-新增

優先權:

Normal

被分派者:

益利周

分類:

開始日期:

2025-08-01

完成日期:

2025-12-31 (逾期 25 天)

完成百分比:

預估工時:

概述

NN bookmark20250528021100422251172311 "Dangerous Permission over Accounts with Replication Rights

All domain users have ForceChangePassword permission against three accounts which have DCsync ability.

" "All standard domain users can change passwords of high privileged users who have Replication rights. DCsync attack is thus possible for adversary to achieve domain dominance.

" Revoke Replication, ForceChangePassword rights from non-essential accounts, including both user and service accounts, unless absolutely required

歷史
屬性變更

動作

複製連結

匯出至 Atom PDF

專案

一般

配置概況

(07)專案管理 » 01_外部專案

自訂查詢