YoVDO

CertifiedDCOM - The Privilege Escalation Journey to Domain Admin with DCOM

Offered By: Black Hat via YouTube

Tags

Windows Security Courses Network Security Courses Active Directory Courses Kerberos Courses Privilege Escalation Courses Remote Code Execution Courses Vulnerability Research Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore a critical vulnerability in DCOM's remote attack surface that allows privilege escalation from Domain User to Domain Admin in Windows enterprise networks. Delve into the journey of discovering "CertifiedDCOM," covering DCOM internals, the conversion of local attack surfaces to remote ones, and the exploitation process to compromise Active Directory. Learn about the role of AD CS (Active Directory Certificate Service) in this exploit chain and understand how attackers can potentially take over an entire Active Directory with only Domain User privileges. Gain insights into Windows security research, including the "Potato" exploits and Kerberos Relay attacks, while uncovering new possibilities for remote DCOM abuse.

Syllabus

CertifiedDCOM: The Privilege Escalation Journey to Domain Admin with DCOM


Taught by

Black Hat

Related Courses

CNIT 127: Exploit Development
CNIT - City College of San Francisco via Independent Enterprise Security Fundamentals
Microsoft via edX Penetration Testing - Post Exploitation
New York University (NYU) via edX Ultimate Ethical Hacking and Penetration Testing (UEH)
Udemy Hands-on Penetration Testing Labs 4.0
Udemy