Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

LinkedIn Learning

Advanced Pen Testing Techniques for Active Directory

via LinkedIn Learning

Overview

Explore concrete, practical strategies for penetration testing Active Directory to prevent enterprise cybersecurity threats.

Syllabus

Introduction
  • Understand and test the security of identity providers
  • What you should know
  • Disclaimer
1. Introduction to Identities
  • Understand Active Directory's role in security
  • The LDAP protocol
  • Interact with LDAP at the command line
  • The LDAPAdmin tool
  • What is Active Directory?
  • Interact with Active Directory at the command line
  • Access LDAP services with a GUI client
  • Add users and computers to a domain
  • Active Directory security audit
2. Testing Active Directory
  • Set up for testing
  • Extract the AD hashes
  • Password spraying Active Directory
  • Kerberos brute-forcing attacks
  • Use CrackMapExec to access and enumerate AD
  • Investigate the SYSVOL share
  • Take advantage of legacy data
3. Advanced Penetration Testing
  • Specific Active Directory attacks
  • Remote extraction of AD hashes
  • Carry out a Kerberos roasting
  • Run a no-preauthentication attack
  • Forge a golden ticket
  • Running a shadow attack
  • Using rubeus to take over the domain
  • Relaying attacks to get a certificate
  • Using smartcards to gain privileged access
  • Set the BloodHound loose
Conclusion
  • Next steps

Taught by

Malcolm Shore

Reviews

4.7 rating at LinkedIn Learning based on 530 ratings

Start your review of Advanced Pen Testing Techniques for Active Directory

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.