Red Teaming Tutorial: Scan Network And Find Local Admin Access

Red Teaming Tutorial: Scan Network And Find Local Admin Access In this red teaming tutorial, we walk through a realistic internal network reconnaissance workflow to identify machines where you have local administrator access. This is a critical phase of post-compromise operations and lateral movement, often overlooked by beginners but heavily abused in real-world red team engagements. If you’re a penetration tester, red team operator, or ethical hacker, this video shows you how attackers and professionals map privileges inside a Windows domain after initial access. 🎯 What You’ll Learn: How to scan an internal network after gaining a foothold Techniques to enumerate hosts and active machines How to identify local admin access across the network Why local admin rights are a major pivot point for lateral movement Common mistakes defenders make that expose admin privileges Real-world red team use cases and OPSEC considerations ⚠️ DISCLAIMER: This content is strictly for educational and authorized penetration testing only. Never use these techniques on systems you do not own or lack explicit written permission to test. Unauthorized access is illegal. JOIN MY DISCORD   / discord   TIMESTAMPS 00:00 - Intro 02:01 - Code Flow Diagram 06:53 - FindLocalAdmin Practical Demonstration 15:52 - Answering questions 18:40 - Setting up Sliver C2 23:51 - Using FindLocalAdmin from Sliver C2 28:35 - Using PSExec module for lateral movement after we found out that we are an admin 38:40 - Outro FOLLOW ME Patreon:   / lsecqt   Twitter:   / lsecqt   Twitch:   / lsecqt   Reddit:   / lsecqt   Medium:   / lsecqt   Support my Work: https://www.buymeacoffee.com/lsecqt Red Teaming Army Blog: https://lsecqt.github.io/Red-Teaming-... 👍 Like, Subscribe, and Hit the Bell to stay ahead in ethical hacking, red teaming, lateral movement, and offensive security research. TAGS (SEO-Optimized) red teaming local admin access network scanning lateral movement internal network reconnaissance privilege escalation windows red team active directory security ethical hacking penetration testing pentesting tutorial offensive security post exploitation domain security infosec cyber security red team operations oscp network enumeration windows privilege abuse