Pentesting for Internal Networks

This HackerOne document describes internal-network pentesting methodologies and best practices, enumerates common Active Directory-related vulnerabilities and attack techniques (ADCS misconfigurations, NTLM relay, Kerberos attacks, DACL issues), explains secure tester access (Zero Trust/Gateway), and includes a NotPetya case study illustrating large-scale malware/worm impact and lateral-movement techniques.