Article: Shadow Credentials-Abusing Key Trust Account Mapping for Account Takeover

A security research firm named SpectreOps recently released an article on how to take over User and Computer objects in an Active Directory using discretionary access control list (DACL) based attacks. DACL is a subsystem in Windows that deals with authorization for requesting access to Windows objects.


Leave a Reply