Active Directory Attack Path Lab

Active Directory Attack Path Lab

Laboratorio completo de Active Directory con escenarios reales:

• Infraestructura — DC (Windows Server 2019), 2 workstations (Win10/11), Exchange server, file server. Todo automatizado con Vagrant/Terraform.
• Escenario 1: Initial foothold — Password spray → AS-REP roasting → credenciales de servicio.
• Escenario 2: Lateral movement — Pass-the-hash, overpass-the-hash, Kerberoasting de service accounts.
• Escenario 3: Privilege escalation — ACL abuse (GenericAll, WriteDACL), Shadow Credentials, ADCS ESC1.
• Escenario 4: Domain dominance — DCSync, Golden Ticket, Silver Ticket, skeleton key.
• Incluye: Guía de setup, scripts de provisioning, writeups de cada path, y BloodHound data pre-cargada.