Trusts You Might Have Missed

Explore the often overlooked world of Windows domain trusts from an offensive security perspective in this 48-minute conference talk presented by Will Schroeder at the 44CON Information Security Conference. Gain insights into how red teams have been successfully exploiting these trusts for years and learn why this topic remains underrepresented in public infosec discussions. Delve into the process of enumerating and abusing domain trusts during security engagements, filling the knowledge gap left by the limited information available on this subject. Witness a complex demonstration that showcases techniques for enumerating, visualizing, and exploiting trust relationships in an example environment, ultimately leading to complete domain takeover without the use of traditional exploits.