Skip to main content

Microsoft Deployment Toolkit

Microsoft Deployment Toolkit (MDT) is a Microsoft Service that assists with automating the Deployment of Microsoft Operating Systems (OS). Usually, MDT is integrated with Microsoft's System Center Configuration Manager (SCCM) which Manages all Updates for all Microsoft Applications, Services, and Operating Systems. MDT is used for New Deployments.

SCCM allows to Review Available Updates to all Software Installed across the estate. It is also possible to test Patches in a SandBoxed Environment.

PXE Boot

Large Organizations use PXE Boot to allow new Devices that are connected to the Network to load and Install the OS directly over a Network Connection. MDT can be used to Create - Manage - Host PXE Boot Images. PXE Boot is usually integrated with DHCP, which means that if DHCP assigns an IP lease, the host is allowed to request the PXE Boot Image and start the Network OS Installation Process.


Once the process is Performed, the Client will use a TFTP Connection to Download the PXE Boot Image.

  • Exploiting PXE Boot Image:
    • Inject a Privilege Escalation Vector, such as a Local Administrator Account, to gain Administrative Access to the OS once the PXE Boot has been Completed.
    • Perform Password Scraping Attacks to recover Active Directory Credentials used during the Install.