> For the complete documentation index, see [llms.txt](https://calvin-lai.gitbook.io/calvin-lai-security/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://calvin-lai.gitbook.io/calvin-lai-security/tools/04-windows-enum-and-exploit/windows-credential-dumping/credential-dumping-dcsync.md).

# Credential Dumping: DCSync

## What is DCSync

DCSync is used to replicate the Active Directory (AD) Objects among the AD Servers to maintain the data consistency at the organization if there are multiple Domain Controllers (DC) of their AD Servers. Microsoft feature Directory Replication Service (DRS) Remote (MS-DRSR)  Protocol that is used to replicate user's data from one DC to another.

## How DCSync Attack Minchanism

## **Walkthrough on DCSYNC Attack**
