Playing Around With ADIDNS RPC Internals
6 July 2026 at 09:25
Porting the functionality of dnscmd.exe into (slightly) more OPSEC safe Beacon Object Files (BOFs) so you can get domain admin rights when you manage to impersonate a user that is a member of the DnsAdmins group, or if using dnscmd.exe simply isnβt an option.
[link] [comments]