Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Hacking Active Directory for Beginners

Cyber Mentor via YouTube

Overview

Dive into a comprehensive 5-hour video tutorial on hacking Active Directory for beginners. Learn essential skills from setting up a lab environment to executing advanced post-compromise attacks. Master techniques like LLMNR poisoning, SMB relay attacks, IPv6 DNS attacks, and Kerberoasting. Explore tools such as PowerView, Bloodhound, and Mimikatz for domain enumeration and credential dumping. Gain practical knowledge on pass-the-hash attacks, token impersonation, and golden ticket attacks. Understand defense strategies and mitigations for various attack vectors. Ideal for aspiring ethical hackers and cybersecurity professionals looking to enhance their Active Directory penetration testing skills.

Syllabus

- Introduction
- Installing VMWare / VirtualBox
- Installing Linux
- Configuring VirtualBox
- Installing PMK
- Active Directory Overview
- Physical Active Directory Components
- Logical Active Directory Components
- AD Lab Overview
- Cloud Lab Alternative
- Downloading the Necessary ISOs
- Setting up the Domain Controller
- Setting Up the User Machines
- Setting Up Users, Groups, and Policies
- Joining Our Machines to the Domain
- Initial AD Attacks Overview
- LLMNR Poisoning Overview
- Capturing NTLMv2 Hashes with Responder
- Password Cracking with Hashcat
- LLMNR Poisoning Defenses
- SMB Relay Attacks Overview
- Quick Lab Update
- Discovering Hosts with SMB Signing Disabled
- SMB Relay Attacks Part 1
- SMB Relay Attacks Part 2
- SMB Relay Attack Defenses
- Gaining Shell Access
- IPv6 Attacks Overview
- Installing mitm6
- Setting up LDAPS
- IPv6 DNS Attacks
- IPv6 Attack Defenses
- Passback Attacks
- Other Attack Vectors and Strategies
- Post Compromise Enumeration Intro
- PowerView Overview
- Domain Enumeration with PowerView
- Bloodhound Overview
- Grabbing Data with Invoke Bloodhound
- Using Bloodhound to Review Domain Data
- Post-Compromise Attacks Intro
- Pass the Hash and Password Overview
- Installing crackmapexec
- Pass the Password Attacks
- Dumping Hashes with secretsdump
- Cracking NTLM Hashes with Hashcat
- Pass the Hash Attacks
- Pass Attack Mitigations
- Token Impersonation Overview
- Token Impersonation with Incognito
- Token Impersonation Mitigation
- Kerberoasting Overview
- Kerberoasting Walkthrough
- Kerberoasting Defenses
- GPP Password Attacks Overview
- Abusing GPP Part 1
- Abusing GPP Part 2
- URL File Attacks
- Mimikatz Overview
- Credential Dumping with Mimikatz
- Golden Ticket Attacks
- Conclusion

Taught by

The Cyber Mentor

Reviews

Start your review of Hacking Active Directory for Beginners

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.