# Internals

- [Finding Domain Controllers and DHCP servers](/cyberwolf-security/internals/internals/finding-domain-controllers-and-dhcp-servers.md)
- [Discovering hosts from the inside](/cyberwolf-security/internals/internals/discovering-hosts-from-the-inside.md)
- [Dumping domain hashes](/cyberwolf-security/internals/internals/dumping-domain-hashes.md)
- [Active Directory](/cyberwolf-security/internals/internals/active-directory.md)
- [Getting local hashes](/cyberwolf-security/internals/internals/getting-local-hashes.md)
- [service principle names (SPNs)](/cyberwolf-security/internals/internals/service-principle-names-spns.md): Service Principal Names (SPNs) are a unique identifier tied to each instance of a Windows service that can delegate to authenticate using Kerberos