๐Secure Bits๐ก
How toย ๐ฐ๐ผ๐๐ฒ๐ฟ๐๐น๐ ๐น๐ผ๐ฐ๐ธ๐ผ๐๐ ๐ฎ๐ป ๐ฎ๐ฐ๐ฐ๐ผ๐๐ป๐ in Active Directory?
There is User-Workstations attribute in Active Directory. This attribute used to be used for defining computers, where the account is able to log on.
The best part is, if you configure this attribute to a non-existent machine, that account is unable to log on.
I have seen this recently on Oddvar Moe twitter account and I wanted to share this with you guys. I can see few possibilities how to use it during some red teaming operations. I believe it would take a while to figure this one out…
The best chances are with RDP, as you can see it clearly says what is wrong. But with powershell remoting or interactive logon it is not as indicative.
