It is difficult to imagine deployment and management without such tools as Group Policy, Config Manager, Intune.
Since deployment and management tools have high access level, they can become double-edged sword.

Session covers how different service accounts can be compromised and used for malicious intent.
Recommendations for how to mitigate will also be given.

The session contains:

- Warm-up: Getting Network Access Account credentials.
- Domain Join Account creds extraction.
- LAPS will improve your security. Maybe.
- The King of Them All: Compromising Client Push Account.
- Passwords in SQL database.
- Recommendations.