Active Directory is one of the most popular and widely deployed directory services for centralised domain management. It is susceptible to a wide variety of attacks due to vulnerabilities, configuration weaknesses and its inherent architectural complexity. Many large enterprises adopt Active Directory based domain management practices and hence its security is of prime concern for enterprise administrators and security auditors. The participants will be taken to a journey of discovering, enumerating and exploiting various services in an Active Directory environment. Participants will start as an outsider in the domain environment with only network level access. Using a combination of recon, exploitation and post-exploitation techniques, the participants will be able to perform multi-staged attacks to finally obtain domain administrator privilege. At the same time understand the concepts of Purple Teaming, visibility & detection and tooling to identify the gaps.
We will be taking a beginners approach to AD from the attackers perspective as well as defenders.
2 days
Beginners/Intermediate
A live Active Directory environment to perform various attacks for gaining domain administrator privilege and operationalize the Purple Team.
AzureAD or hybrid environments would not be covered in this workshop
Payatu Technologies Pvt. Ltd