Straw

Abstract

Active Directory is leveraged by 90% of the enterprises and it is the key to secure the enterprise. This talk is based on Tim Madin’s Derbycon Talk and Sean Metcalf BlackHat Talk. The attack vectors have been increased and the threats have been changed over the years. So in this talk we will be focusing on some of the active directory attacks which are been performed by the threat actors. We will start the presentation with a bit of basics of kerberos and working of it in the domain. We would be using attack vectors like Kerberoasting, GPP exploitation, NTDS extraction and then finally cracking the hashes. For all of these Red Team exercises Demo’s will be provided.

Kerberoasting
Group Policy Prefereneces Exploitation
NTDS Extraction

Speaker

Ankit Joshi

Timing

Starts at Saturday March 25 2017, 10:10 AM. The sessions runs for about 1 hour.

Resources