technique
https://msdn.microsoft.com/library/cc237008.aspx
Microsoft. (2017, December 1). MS-NRPC - Netlogon Remote Protocol. Retrieved December 6, 2017.
technique
https://msdn.microsoft.com/library/cc245496.aspx
Microsoft. (n.d.). MS-SAMR Security Account Manager (SAM) Remote Protocol (Client-to-Server) - Transport. Retrieved December 4, 2017.
technique
https://github.com/mattifestation/PowerSploit
PowerSploit. (n.d.). Retrieved December 4, 2014.
technique
https://wiki.samba.org/index.php/DRSUAPI
SambaWiki. (n.d.). DRSUAPI. Retrieved December 4, 2017.
technique
https://attack.mitre.org/techniques/T1003
technique
https://en.wikipedia.org/wiki/Microsoft_Windows_library_files
Wikipedia. (2017, January 31). Microsoft Windows library files. Retrieved February 13, 2017.
technique
https://attack.mitre.org/techniques/T1129
technique
https://tools.cisco.com/security/center/content/CiscoAppliedMitigationBulletin/cisco-amb-20080610-SN
Cisco. (2008, June 10). Identifying and Mitigating Exploitation of the SNMP Version 3 Authentication Vulnerabilities. Retrieved October 19, 2020.
technique
https://us-cert.cisa.gov/ncas/alerts/TA17-156A
US-CERT. (2017, June 5). Reducing the Risk of SNMP Abuse. Retrieved October 19, 2020.
technique
https://www.us-cert.gov/ncas/alerts/TA18-106A
US-CERT. (2018, April 20). Alert (TA18-106A) Russian State-Sponsored Cyber Actors Targeting Network Infrastructure Devices. Retrieved October 19, 2020.