Internal attack vectors covered include:

• Weak Domain User Passwords
• Broadcast Name Resolution Poisoning (BNRP)
• Local Administrator Attacks (aka Pass-the-Hash)
• Cleartext Passwords Found in Memory
• Insufficient Network Access Controls