Attacking & Defending Active Directory Lab Objective:
The importance of Active Directory in an enterprise cannot be stressed enough. Used by more than 90% of Fortune 1000 companies, the all-pervasive AD is the focal point for adversaries. Still, when it comes to AD security, there is a large gap of knowledge which security professionals and administrators struggle to fill. Over the years, we have taught numerous professionals in real world trainings on AD security and always found that there is a lack of quality material and specially, dearth of practice lab where one can practice AD attacks in a controlled environment.
Attacking and Defending Active Directory Lab is designed to provide a platform for security professionals to understand, analyze and practice threats and attacks in a modern Active Directory environment. The lab is beginner friendly and comes with a complete video course and lab manual. The course and the lab are based on our years of experience of making and breaking Windows and AD environments and teaching security professionals.
The lab is tightly integrated with the course and is designed as a practice lab rather than a challenge lab. We cover topics like AD enumeration, trusts mapping, domain privilege escalation, domain persistence, Kerberos based attacks (Golden ticket, Silver ticket and more), ACL issues, SQL server trusts, Defenses and bypasses of defenses.
What will you Learn?
The Attacking and Defending Active Directory Lab enables you to:
Practice various attacks in a fully patched realistic Windows environment with Server 2016 and SQL Server 2017 machine.
Multiple domains and forests to understand and practice cross trust attacks.
Learn and understand concepts of well-known Windows and Active Directory attacks.
Learn to use Windows as an attack platform and using trusted features of the OS like PowerShell and others for attacks.
Try scripts, tools and new attacks in a fully functional AD environment.
The following are the prerequisites for the lab:
Basic understanding of Active Directory
Ability to use command line tools on Windows
This Lab like other challenging certifications requires you to learn by exploring. If you understand the basics of how a Windows domain works and have used Powershell scripts for pentesting/red teaming, then you should be right at home. We expect the rest to be researched as the student encounters a roadblock.