Sign up for our free Threat Hunting Summit June 17 Register Here

Workshop: Hands on Kerberos

Course Authored by .

Workshop: Hands On Kerberos with Tim Medin Red Siege

In this workshop, you’ll get an overview of Kerberos based on a section straight from Red Siege’s Offense for Defense (O4D) course and another excerpt from the new Pen Testing: Beyond the Basics class.

Course Length: 4 Hours

Includes a Certificate of Completion



Description

In this workshop, you’ll get an overview of Kerberos based on a section straight from Red Siege’s Offense for Defense (O4D) course and another excerpt from the new Pen Testing: Beyond the Basics class.

We’ll cover what Kerberos is, and how to attack it. You’d work through a hands on lab exercise involving Kerberoasting (Tim’s baby), the silver ticket attack, and the golden ticket attack.

What You’ll Learn:

  • What Kerberos is and the role it plays in authentication and authorization in Active Directory environments

  • Kerberos ticket structure and how tickets are used

  • How weaknesses in Microsoft Kerberos’s implementation can lead to password attacks against service accounts

  • How to perform a Kerberoasting attack

  • How to perform a Golden Ticket attack

  • System Requirements
    • Just a laptop with a browser (Safari will work, but it is not preferred)

Syllabus

    • Examine how Active Directory and Kerberos work to provide authentication and authorization

    • Windows Domain and Kerberos – Nearly every organization uses Active Directory (AD). No penetration testing workshop or course  would be complete without a deep dive into identifying issues in AD, and abusing those issues for privilege escalation, lateral movement, and persistence.

    • Discuss real world, high-impact attacks used by threat actors to abuse Kerberos, such as

        • Kerberoasting

        • Silver Ticket Attack

        • Golden Ticket Attacks

        • Overpass-the-Hash

        • Pass-the-Ticket

        • Kerberos Delegation Issues

    • The workshop includes two hands-on labs

        • Kerberoasting and Silver Ticket Attack

        • Golden Ticket Attack

FAQ

Audience Skill Level:

Intermediate

Who Should Take This Workshop:

People with some experience with Active Directory who want to understand more about Kerberos and the attacks against it.

Prerequisites:

A basic understanding of what Active Directory is and what it does.

About the Instructor

Pixel splash background
"Hacker, instructor, and Kerberoast Guy"
Bio

Tim is the CEO and founder of Red Siege Information Security. He is the creator of the Kerberoasting. Tim was a Senior Instructor and course author (SEC560) at The SANS Institute. Tim has performed penetration tests on a wide range of organizations and technologiesTim is an experienced international speaker, having presented to organizations around the world.

Related products

Shopping Cart

No products in the cart.