Stealthed user

  • Thread starter Thread starter brian
  • Start date Start date
B

brian

I have heard a rumor that it is possible to create a stealth user account
where only the stealth user is aware of the account, the domain admin and
above cannot see the stealthed acount in the AD

is this true or false?
 
Since an Admin would need to do this, what would be the point?

If you are concerned that a "trojan" or "hacker" might do this, first
recognize it would take an elevation of privileges to accomplish and
then the account would only be relatively hidden.

You can probably accomplish it (I haven't tried this but it's the way
the system works) by using PERMISSIONS on the Active Directory
objects -- of course auditing would catch the creation or management
of objects.

Just deny read on the account object and it's parent OU (the OU will
still be visible from above so this isn't really stealth.)
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Razer Blade Stealth 0
Cooler Master QuickFire Stealth Keyboard 2
CES 2016 0
Sneaky Cryptocurrency Mining 2
Question about Windows XP firewall 9
The Last of Us - Part I (PC) 6
Blocking a Specific Port 4
Stealth Destroyer USS Zumwalt 3

Back
Top