Examples SID’s:
S-1-0-0 Nobody
S-1-1-0 Everybody S-1-5-11 Authenticated Users S-1-5-18 Local System S-1-5-domainidentifier-500 Administrator
S-1-5-21-1336799502-1441772794-948155058-1000
RID - 1000 —> Relative identifier , standard user
RID <1000 well know SID’s
Bind Shell
nc <ip> <port>
whoami
whoami /groups
powershell —> bindshell will help get into powershell
<<we can run these commands only in powershell>>
Get-LocalUser
Get-LocalGroup