Fun with LDAP and Kerberos - Attacking AD from Non-Windows Machines
Offered By: WEareTROOPERS via YouTube
Course Description
Overview
Syllabus
Introduction
Why this talk?
Takeaways
What is "Active Directory"?
Core AD Technologies
Working with AD Protocols
Find Active Directory through DNS
Domain Meta-Data Through LDAP
MS-RPC Calls
Communicating with MS-RPC
Impacket Binaries
Impacket Static Binaries
Active Directory uses LDAP
What does LDAP in AD look like?
Idapsearch - Computers
Nested Lookups
Nested Domain Admins
Admin-Count
Why do it manually?
LDAP Summary
Kerberos Crash-Course
What does Kerberos look like?
Kerberos and Authorization
Kerberos from Linux
Setting up Kerberos
Using Kerberos with GSSAPI
Viewing Kerberos Tickets
Using Kerberos with Impacket
When NTLM Auth is disabled
Password Spraying with SMB / RPC
Other Password Guessing Techniques
Password Guessing with Kerberos
What about logs?
Kerberos Event Logging
Requesting TGS for SPN
Cracking TGS Resp
Over Pass the Hash - AES
Forging Kerberos Tickets
Golden Ticket Creation
Golden Ticket Usage
Silver Ticket Creation
Silver Ticket Usage
Shoulders of Giants
Taught by
WEareTROOPERS
Related Courses
Cyber Attack CountermeasuresNew York University (NYU) via Coursera Advanced Pen Testing Techniques for Active Directory
LinkedIn Learning CompTIA CySA+ (CS0-002) Cert Prep: 3 Identity and Access Management
LinkedIn Learning CompTIA Network+ (N10-007) Cert Prep: 5 Securing TCP/IP
LinkedIn Learning CompTIA Network+ (N10-008) Cert Prep: 5 Securing TCP/IP
LinkedIn Learning