@@ -18,3 +18,10 @@ tags: [windows, hardening, AD]
## Credential hardening
* [ ] Disable LM hashes via GPO noLMHash
+
+## Domain Controler Hardening
+* [ ] Disable the printer spooler service (`spoolsv.exe`)
+ - Used for several exploits
+ - CVE-2021-1675
+ - CVE-2020-1048
Marius Schwarz