Privilege Escalation in Active Directory | wiki.mrasec
How to Exploit Active Directory ACL Attack Paths Through LDAP Relaying Attacks - Praetorian
What is old is new again: The Relay Attack – SecureAuth
mpgn on Twitter: "In case you want to see something cool about CrackMapExec, ntlmrelayx and Responder 😌😋 1⃣ Responder -I eth0 2⃣ https://t.co/uaVzXZLXfG -t <ip> -smb2support -socks 3⃣ proxychains crackmapexec smb <ip> -
Abusing NTLM Relay and Pass-The-Hash for Admin | by Julian Runnels | InfoSec Write-ups
Admin's Nightmare: Combining HiveNightmare/SeriousSAM and AD CS Attack Path's for Profit - Black Hills Information Security
Using HTTPS socks doesn't seem to work · Issue #642 · SecureAuthCorp/impacket · GitHub
Relay - The Hacker Recipes
Red teaming tutorial: Active directory pentesting approach and tools - Infosec Resources
Remote NTLM relaying through meterpreter on Windows port 445 – DiabloHorn
From Stranger to DA // Using PetitPotam to NTLM relay to Domain Administrato - Truesec