Overview
Explore Active Directory password blacklisting in this comprehensive conference talk from BSidesLV 2018. Delve into the intricacies of Active Directory, password requirements, and the implementation of custom Password Filter DLLs. Learn about project background, installation processes, and potential pitfalls. Gain insights on Unix-Windows transition considerations and discover effective testing and deployment strategies for custom Password Filter DLLs. Follow the speaker through various testing frameworks, including standalone domain and Cab environment setups. Conclude with valuable reflections on the entire process, equipping you with practical knowledge to enhance Active Directory security through password blacklisting techniques.
Syllabus
Active Directory Password Blacklisting
Presentation Outline
What is Active Directory?
Password Requirements
Project Background: AD Password Blacklisting
Password Filter DLL?
Installing and running a custom Password Filter DLL
Implementation Gotchas
Unix - Windows Transition Thoughts
Learning how to test and deploy a custom Password Filter DLL
Phase 1 TESTING FRAMEWORK
TESTING FRAMEWORK standalone domain
TESTING FRAMEWORK Cab environment
Final Reflections
Taught by
BSidesLV