📄️ Permission Delegation
Active Directory can delegate permissions and privileges through a feature called Permission Delegation.
📄️ Kerberos Delegation
Kerberos Delegation allows an Application to access Resources hosted on a different Server.
📄️ Automated Relays
All Windows hosts have a Machine Account. This is the User Account associated with the Machine. Unless someone tampered with the Account of the Host, the Passwords of these Accounts are Uncrackable.
📄️ Group Policy Objects
Group Policy Objects (GPO) is a Virtual Collection of Policy Settings. Each GPO has a Unique Name, called a GUID. AD GPO's are Stored in the SYSVOL Directory.
📄️ Certificates
AD Certificate Services (CS) is Microsoft's Public Key Infrastructure (PKI) Implementation. Since AD provides a Level of Trust in an Organizations, it can be used as a CA to Prove and Delegate Trust. AD CS is used to Encrypting File Systems, Creating and Verifying Digital Signatures, and User Authentication.
📄️ Domain Trusts
The Key Concept of Exploiting Domain Trusts is if we take control over the Root Domain we will be in a Position to Compromise all of Regional Domains.