YoVDO

CertifiedDCOM - The Privilege Escalation Journey to Domain Admin with DCOM

Offered By: Black Hat via YouTube

Tags

Windows Security Courses Network Security Courses Active Directory Courses Kerberos Courses Privilege Escalation Courses Remote Code Execution Courses Vulnerability Research Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore a critical vulnerability in DCOM's remote attack surface that allows privilege escalation from Domain User to Domain Admin in Windows enterprise networks. Delve into the journey of discovering "CertifiedDCOM," covering DCOM internals, the conversion of local attack surfaces to remote ones, and the exploitation process to compromise Active Directory. Learn about the role of AD CS (Active Directory Certificate Service) in this exploit chain and understand how attackers can potentially take over an entire Active Directory with only Domain User privileges. Gain insights into Windows security research, including the "Potato" exploits and Kerberos Relay attacks, while uncovering new possibilities for remote DCOM abuse.

Syllabus

CertifiedDCOM: The Privilege Escalation Journey to Domain Admin with DCOM


Taught by

Black Hat

Related Courses

Ethical Hacking in 15 Hours - 2023 Edition - Learn to Hack
Cyber Mentor via YouTube Contextomy - Let's Debug Together
nullcon via YouTube macOS Security Features Bypasses by Example
nullcon via YouTube Exploiting Android Messengers with WebRTC
nullcon via YouTube XNU Heap Exploitation - From Kernel Bug to Kernel Control
nullcon via YouTube