YoVDO

Hacking Active Directory for Beginners

Offered By: Cyber Mentor via YouTube

Tags

Penetration Testing Courses Cybersecurity Courses Ethical Hacking Courses Active Directory Courses Virtual Machines Courses HashCat Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Dive into a comprehensive 5-hour video tutorial on hacking Active Directory for beginners. Learn essential skills from setting up a lab environment to executing advanced post-compromise attacks. Master techniques like LLMNR poisoning, SMB relay attacks, IPv6 DNS attacks, and Kerberoasting. Explore tools such as PowerView, Bloodhound, and Mimikatz for domain enumeration and credential dumping. Gain practical knowledge on pass-the-hash attacks, token impersonation, and golden ticket attacks. Understand defense strategies and mitigations for various attack vectors. Ideal for aspiring ethical hackers and cybersecurity professionals looking to enhance their Active Directory penetration testing skills.

Syllabus

- Introduction
- Installing VMWare / VirtualBox
- Installing Linux
- Configuring VirtualBox
- Installing PMK
- Active Directory Overview
- Physical Active Directory Components
- Logical Active Directory Components
- AD Lab Overview
- Cloud Lab Alternative
- Downloading the Necessary ISOs
- Setting up the Domain Controller
- Setting Up the User Machines
- Setting Up Users, Groups, and Policies
- Joining Our Machines to the Domain
- Initial AD Attacks Overview
- LLMNR Poisoning Overview
- Capturing NTLMv2 Hashes with Responder
- Password Cracking with Hashcat
- LLMNR Poisoning Defenses
- SMB Relay Attacks Overview
- Quick Lab Update
- Discovering Hosts with SMB Signing Disabled
- SMB Relay Attacks Part 1
- SMB Relay Attacks Part 2
- SMB Relay Attack Defenses
- Gaining Shell Access
- IPv6 Attacks Overview
- Installing mitm6
- Setting up LDAPS
- IPv6 DNS Attacks
- IPv6 Attack Defenses
- Passback Attacks
- Other Attack Vectors and Strategies
- Post Compromise Enumeration Intro
- PowerView Overview
- Domain Enumeration with PowerView
- Bloodhound Overview
- Grabbing Data with Invoke Bloodhound
- Using Bloodhound to Review Domain Data
- Post-Compromise Attacks Intro
- Pass the Hash and Password Overview
- Installing crackmapexec
- Pass the Password Attacks
- Dumping Hashes with secretsdump
- Cracking NTLM Hashes with Hashcat
- Pass the Hash Attacks
- Pass Attack Mitigations
- Token Impersonation Overview
- Token Impersonation with Incognito
- Token Impersonation Mitigation
- Kerberoasting Overview
- Kerberoasting Walkthrough
- Kerberoasting Defenses
- GPP Password Attacks Overview
- Abusing GPP Part 1
- Abusing GPP Part 2
- URL File Attacks
- Mimikatz Overview
- Credential Dumping with Mimikatz
- Golden Ticket Attacks
- Conclusion


Taught by

The Cyber Mentor

Related Courses

Emerging Technologies Capstone
Yonsei University via Coursera Microsoft Azure Virtual Machines
Microsoft via edX Introduction to Microsoft Azure
Microsoft via edX Google Cloud Fundamentals: Core Infrastructure
Google via Coursera Build a Modern Computer from First Principles: Nand to Tetris Part II (project-centered course)
Hebrew University of Jerusalem via Coursera