Active Directory is a identity management directory service created and developed by Microsoft. It is an essential tool for managing and organizing resources like users, computers, and groups within the network.

It provides authentication and access control for users and computers, which makes easier for administrators to manage access to network resources.
Active Directory offers features like group policy management, DNS integration etc.

How can this Be exploited

Can be Exploited without ever attacking patchable exploits(eg: Eternal blue), Instead we abuse features, trusts, components and more.

Active Directory Components

PHYSICAL	LOGICAL
Data Store	Partitions
Domain controllers	Schemas
Global catalog server	Domains
Read-Only Domain Controller (RODC)	Domain tress
	Forests
	Sites
	Organization units (OUs)

Physical components
Logical Components