Winning the Game of Active Directory - Securing Against Common Attack Strategies
Overview
Learn essential Active Directory security strategies in this 43-minute DEF CON 32 conference talk that explores the Game Of Active Directory (GOAD) vulnerable testing environment. Dive into over 30 attack methodologies and multiple paths to AD compromise while understanding crucial defensive measures. Master reconnaissance techniques, password spraying, Kerberos roasting, Responder attacks, and delegation vulnerabilities. Discover practical mitigations and implementation strategies to effectively protect Active Directory environments from common attack vectors. Follow along as security expert Brandon Colley demonstrates how proper security controls can stop these attacks, emphasizing that true victory in AD security lies in building robust defensive measures rather than simply achieving penetration.
Syllabus
Introduction
About Brandon
Reconnaissance
Password Spray
Kerberos Roasting
Responder
Delegation
Attack
Taught by
DEFCONConference