YoVDO

The Dirty Little Secrets They Didn't Teach You In Pentesting Class

Offered By: YouTube

Tags

Conference Talks Courses Penetration Testing Courses Metasploit Courses Nmap Courses Session Management Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore the hidden aspects of penetration testing not typically covered in standard courses through this conference talk by Chris Gates and Rob Fuller. Delve into advanced techniques for achieving domain admin status, setting realistic pentesting goals, and executing actual attack scenarios. Learn about essential prep work, password strategies, and effective use of tools like Nmap scripts and Metasploit auxiliary modules. Discover post-exploitation tactics, including optimal persistence methods, alternative command execution techniques, and network reconnaissance. Gain insights into creating zombies, searching for valuable information, and handling scenarios where traditional methods fall short. Enhance your pentesting skills with practical demonstrations and expert knowledge shared in this comprehensive presentation.

Syllabus

Intro
The setup...
Domain Admin Or Bust
Pentesting Goals
Is it working?
Actual Attack Scenarios (best case)
Prep Work
Quick Tangent → Passwords
Nmap Scripts
MSF Auxiliary Modules
Post Exploitation Google Docs
What is the best persistence method?
Hooking your homies up
What if CMD.exe is disabled?
But... dropping binaries == bad
Route
TCP Table
NetDiscovery
Domain Discovery
DisplaySessions
Creating Zombies
DEMO
Searching for Gold (Good)
Searching for Gold (Better)
These won't show up there...


Related Courses

Network Security
Georgia Institute of Technology via Udacity
Proactive Computer Security
University of Colorado System via Coursera
Identifying, Monitoring, and Analyzing Risk and Incident Response and Recovery
(ISC)² via Coursera
Hacker101
HackerOne via Independent
CNIT 127: Exploit Development
CNIT - City College of San Francisco via Independent