Expose Hidden Active Directory Risks

June 17, 2026
Media Summary: In this video, I walk through BloodHound Community Edition in my Shadow admins might not wear capes—but they can bring down your If you're using AWS Organizations, you probably rely on admin delegations for secure, scalable management. But what if an ...

Expose Hidden Active Directory Risks - Detailed Analysis & Overview

In this video, I walk through BloodHound Community Edition in my Shadow admins might not wear capes—but they can bring down your If you're using AWS Organizations, you probably rely on admin delegations for secure, scalable management. But what if an ... Cool so why do we really care about all of that would be a good question to have so as far as you know Do you know who has actual privileged access in your In this episode, Craig Birch breaks down one of

A disabled account doesn't stop an attacker if GenericAll permissions exist. They turn it back on, and you never see it happen.

Photo Gallery

Expose Hidden Active Directory Risks with Ping Castle + Wazuh
Bloodhound Tool Exposes Hidden Active Directory Risk
The Hidden Dangers of Active Directory Logon Scripts (and How to Detect Them)
Hidden Admins: How Non-Standard Primary Group IDs Expose Active Directory to Risk
Hidden in Plain Sight: Exposing Shadow Admins in Active Directory
The Hidden Risks of AWS Admin Delegation: Adversary Tactics Revealed
AdminSDHolder in Active Directory: Hidden Risks and Persistent Threats
The Unintended Risks of Trusting Active Directory
Securing Active Directory: 3 misconfigurations you should know | Learn with HTB (Episode 10)
Uncover Hidden AD Group Risks & Privileged Access with Netwrix Auditor
Admin Accounts with SPNs — Hidden Risk Behind Kerberoasting
How Attackers Use GenericAll to Reach Domain Admin (Most Admins Miss This)

Related Security Resources

Expose Hidden Active Directory Risks with Ping Castle + Wazuh Bloodhound Tool Exposes Hidden Active Directory Risk The Hidden Dangers of Active Directory Logon Scripts (and How to Detect Them) Hidden Admins: How Non-Standard Primary Group IDs Expose Active Directory to Risk Hidden in Plain Sight: Exposing Shadow Admins in Active Directory The Hidden Risks of AWS Admin Delegation: Adversary Tactics Revealed AdminSDHolder in Active Directory: Hidden Risks and Persistent Threats The Unintended Risks of Trusting Active Directory The Surprising Reason Your Global Team Needs To Switch To Central Standard Time From GMT When Fashion Meets Internet Fame Werewolf Shirts Are Tearing Up The Meme Landscape – What's Next Mygeisinger's AI-Powered Diagnosis Tool Leaves Patients Speechless The Lcm Of 5 3 And 4: Uncovering The Surprising Reason It Matters In Everyday Life Arrested In Chattanooga - What You Need To Know Before Failing To Appease The Bureaucratic Process From Miles To Money: How Accurate Drivetime Radius Maps Save You Thousands Florida Fantasy 5 Results Leave Players Reeling – What's Behind The Numbers? The Dark Truth Behind ALDI's Hourly Wage: How Corporate Profits Trump Worker Pay
View Detailed Profile
Expose Hidden Active Directory Risks with Ping Castle + Wazuh

Expose Hidden Active Directory Risks with Ping Castle + Wazuh

In this video, we walk through how to

Bloodhound Tool Exposes Hidden Active Directory Risk

Bloodhound Tool Exposes Hidden Active Directory Risk

In this video, I walk through BloodHound Community Edition in my

The Hidden Dangers of Active Directory Logon Scripts (and How to Detect Them)

The Hidden Dangers of Active Directory Logon Scripts (and How to Detect Them)

Critical

Hidden Admins: How Non-Standard Primary Group IDs Expose Active Directory to Risk

Hidden Admins: How Non-Standard Primary Group IDs Expose Active Directory to Risk

Welcome to Guardians of the

Hidden in Plain Sight: Exposing Shadow Admins in Active Directory

Hidden in Plain Sight: Exposing Shadow Admins in Active Directory

Shadow admins might not wear capes—but they can bring down your

The Hidden Risks of AWS Admin Delegation: Adversary Tactics Revealed

The Hidden Risks of AWS Admin Delegation: Adversary Tactics Revealed

If you're using AWS Organizations, you probably rely on admin delegations for secure, scalable management. But what if an ...

AdminSDHolder in Active Directory: Hidden Risks and Persistent Threats

AdminSDHolder in Active Directory: Hidden Risks and Persistent Threats

In This Episode of

The Unintended Risks of Trusting Active Directory

The Unintended Risks of Trusting Active Directory

Cool so why do we really care about all of that would be a good question to have so as far as you know

Securing Active Directory: 3 misconfigurations you should know | Learn with HTB (Episode 10)

Securing Active Directory: 3 misconfigurations you should know | Learn with HTB (Episode 10)

ActiveDirectory

Uncover Hidden AD Group Risks & Privileged Access with Netwrix Auditor

Uncover Hidden AD Group Risks & Privileged Access with Netwrix Auditor

Do you know who has actual privileged access in your

Admin Accounts with SPNs — Hidden Risk Behind Kerberoasting

Admin Accounts with SPNs — Hidden Risk Behind Kerberoasting

In this episode, Craig Birch breaks down one of

How Attackers Use GenericAll to Reach Domain Admin (Most Admins Miss This)

How Attackers Use GenericAll to Reach Domain Admin (Most Admins Miss This)

A disabled account doesn't stop an attacker if GenericAll permissions exist. They turn it back on, and you never see it happen.

Top 4 Active Directory Security Issues from 2 Years of Security Assessments | OD319

Top 4 Active Directory Security Issues from 2 Years of Security Assessments | OD319

Active Directory