During a pentest, I managed to compromise a user with few privileges.
As it is a domain user, I decided to run
BloodHound based on your credentials to verify if there is a route from this user to domain administrators.
own privilege on another active directory account, which means you should be able to change your attributes, such as
userPassword, which I did, using
ldp.exe. Unfortunately, Active Directory does not seem to allow authentication based on this LDAP attribute. Then I needed to find something else.
I would like to use the MMC
Active Directory Users and Computers but I need to log in as a member of the domain, which I can't, since I would need to integrate my PC into the domain (I prefer not to)
What tool can I use to act / impersonate this user that I should have?