ACL
Finding Highly Privileged Accounts in ACL's - Part 2 - GROUP POLICY
In the previous post Part 1 I introduced a way to detect a malicious actor account in the access control list of the domain root.
ACL
Finding Highly Privileged Accounts in ACL's - Part 1
When trying to identify the highly privileged accounts in an Active Directory you might start with the members of the built-in administrative groups like Domain Admin etc.