Exploiting Active Directory Vulnerabilities to Gain Administrator Access

The article describes the process of exploiting a chain of vulnerabilities in Active Directory. Unsecured access control lists allow an attacker to obtain a session on the host. By discovering stored credentials and a group with delegation, it is possible to recover an administrator account.