Netcat Analysis

Active Directory Analysis Highlight

In order to join Active Directory from a client system, a number of ports are required. The main ports are: DNS 53(tcp/udp), Kerberos 88(tcp/udp), SMB 445(tcp), MSRPC 135(tcp), LDAP 389(tcp/udp). High ports may also be needed. For more details, see this here!The actual ports vary by Windows Server version. It is worth noting that testing UDP with a port scanner is not tenable. Applications using UDP have their own session management processes. Testing TCP is much easier. Testing DNS or Kerberos, which both default to UDP for the first 512 bytes, requires more work. To cheat a little, one can just test the TCP port. Most firewalls, whether network based or system based, open both when using "DNS" or "Kerberos" as an service name. Testing the TCP ports with netcat is simple enough.

More To Come!