Learn essential Active Directory security strategies in this 43-minute DEF CON 32 conference talk that explores the Game Of Active Directory (GOAD) vulnerable testing environment. Dive into over 30 attack methodologies and multiple paths to AD compromise while understanding crucial defensive measures. Master reconnaissance techniques, password spraying, Kerberos roasting, Responder attacks, and delegation vulnerabilities. Discover practical mitigations and implementation strategies to effectively protect Active Directory environments from common attack vectors. Follow along as security expert Brandon Colley demonstrates how proper security controls can stop these attacks, emphasizing that true victory in AD security lies in building robust defensive measures rather than simply achieving penetration.
Winning the Game of Active Directory - Securing Against Common Attack Strategies
Overview
Syllabus
Introduction
About Brandon
Reconnaissance
Password Spray
Kerberos Roasting
Responder
Delegation
Attack
Taught by
DEFCONConference
Related Courses
-
Active Directory Attacks Series
-
Top Active Directory Attacks - Understand, then Prevent and Detect
-
Fun with LDAP and Kerberos - Attacking AD from Non-Windows Machines
-
My Quest for Privileged Identity to Own Your Domain
-
Active Directory and DNS: A Match Made in Heck - Understanding Directory Services Integration
-
Is This My Domain Controller? A New Class of Active Directory Protocol Injection Attacks
