salvacybersec/personas
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
448d1cdcd9fd186b803e153f9d91c0edb37c8469
personas/personas/_shared/internal-allthethings/active-directory/deployment-mdt.md
salvacybersec 448d1cdcd9 feat(install): add OpenCode target + InternalAllTheThings knowledge base 
- install_opencode: deploys 29 personas as agents + 1011 skills to
  ~/.config/opencode/{agents,skills}/. Uses OpenCode's markdown+YAML
  agent format (mode/color/permission) and SKILL.md format.
- Topic filter with sensible defaults (drops marketing/biz ~514 skills).
  CLI: --opencode-topics security-offensive,coding-backend,...
- Clone of swisskyrepo/InternalAllTheThings (168 MD, 1.7MB) added to
  _shared/ as a reference trove for AD attack paths, ADCS ESC1-15,
  Kerberos delegation, NTLM relay/coerce, lateral movement, persistence.
- NEO redteam + VORTEX cloud-ad personas reference the new KB with
  MITRE ATT&CK TTP mapping pointers.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-04-16 03:11:44 +03:00

2.3 KiB
Raw Blame History

Deployment - MDT

Microsoft Deployment Toolkit (MDT) is a free tool from Microsoft used to automate the deployment of Windows operating systems and applications.

It lets IT admins create a central deployment share with OS images, drivers, updates, and apps, then use automated scripts (task sequences) to install them on multiple computers, either over the network (Lite Touch) or from media (USB/DVD).

Deployment Share

These files contains credentials used by Microsoft Deployment Toolkit to join a computer to the domain and to access network resources.

  • Bootstrap.ini - Located in DeploymentShare\Control\Bootstrap.ini
  • CustomSettings.ini - Located in DeploymentShare\Control\CustomSettings.ini
Name Description
DomainAdmin Account used to join the computer to the domain
DomainAdminPassword Password used to join the computer to the domain
UserID Account used for accessing network resources
UserPassword Password used for accessing network resources
AdminPassword The local administrator account on the computer
ADDSUserName Account used when promoting to DC during deployment
ADDSPassword Password used when promoting to DC during deployment
Password Password to use for promoting member server to a domain controller
SafeModeAdminPassword Used when deploying DCs, it is the AD restore mode password
TPMOwnerPassword The TPM password if not set already
DBID Account used to connect to SQL server during deployment
DBPwd Password used to connect to SQL server during deployment
OSDBitLockerRecoveryPassword BitLocker recovery password

Other credentials can be found inside the files hosted in the deployment share:

  • DeploymentShare\Control\TASKSEQUENCENAME\ts.xml
  • DeploymentShare\Scripts\ folder
  • DeploymentShare\Applications folder
  • LiteTouchPE_x86|x64.iso, extract files and look for bootstrap.ini
  • LiteTouchPE_x86|x64.wim, extract files and look for bootstrap.ini

References