Red Teaming ADventures in Active Directory




As a penetration tester, Windows Active Directory is one of our most significant targets. On a network, it is king and vault all in one. One of the issues we see when we teach classes or work with other penetration testers is that they don’t have much experience working with AD in a real enterprise. Not Eric Kuehn though.

In this webinar, Eric will explore what AD means to a penetration tester and how we can target it. He will cover ways to examine an Active Directory environment, looking for a variety of misconfigurations which are commonly seen in Active Directory implementations (even by some security conscious entities). Then the 2-hour webcast will discuss exploitation of those misconfigurations.

Some of the specific topics that Eric will cover are:
– Searching AD for attractive targets
– Exploiting trust relationships