Skip to content
Antisyphon Training

Antisyphon Training

  • Home
  • Live Training
    • Live Training Calendar
    • Course Catalog
    • Pay What You Can Training
    • Training Roadmap
    • Cybersecurity Training for Businesses
    • The Vault Program
  • On-Demand Training
    • Course Catalog
    • Training Roadmap
    • Cybersecurity Training for Businesses
    • MSP Training
    • The Vault Program
  • Cyber Range
    • About Our Cyber Range
    • Purchase Subscription
    • ACE-T™ Certification
    • ACE-T™ Level Lookup
  • About
    • Mission
    • FAQ
    • Giving Back
    • Our Instructors
    • Testimonials
    • Updates
  • Contact Us
  • Toggle search form
Secure Ideas - Red Team Fundamentals for Active Directory

Red Team Fundamentals for Active Directory

Instructor: Eric Kuehn
Course Length: 8 Hours

Includes: Six months of complimentary access to the Antisyphon Cyber Range, certificate of participation, six months access to class recordings.

View Live/Online Course Schedule
Secure Ideas - Red Team Fundamentals for Active Directory

Course Description

The Red Team Fundamentals for Active Directory course is an 8-hour class focused on explaining the fundamentals of Active Directory and how different aspects can be exploited when performing penetration tests. The goal is not only to cover different attacks but also explain the details of why they work and how an environment can be made resilient to them and potentially detect malicious activity. This combination opens the course to those looking to hone their offensive skills as well as those who are protecting an enterprise network.

The course mixes lecture with a number of hands-on exercises to reinforce the information and techniques. The activities will cover ways to examine an Active Directory environment, looking for a variety of misconfigurations that are commonly seen in Active Directory implementations (even by some security conscious entities), and then exploit these issues to pivot and escalate our access. Ultimately, the students will gain full control of an AD Forest.

While in class, students will be provided access to a lab containing realistic targets and tools to learn both the attacks and defenses of Active Directory. This environment enables the attendees to understand how the covered techniques are used in the real world.


Topics/Agenda

  • Introduction
  • Active Directory Concepts & Exploitation
    • Forests, Domains, and Domain Controllers
    • Attributes and Data Replication
    • OUs and ACLs
    • Group Policy Objects
    • Authentication Protocols
    • Boundary between Windows systems and Active Directory
    • Trusts

Who Should Take This Course

Anyone

Student Requirements

While attendees don’t necessarily need any prior security experience to take this course, they will get the most out of it with a basic grasp of the following:

  • Windows Operating Systems
  • PowerShell

What Each Student Should Bring

A laptop with internet access


Course Instructor

Eric Kuehn
Eric Kuehn

Before coming to Secure Ideas, Eric Kuehn spent close to 20 years working with enterprise scale Microsoft infrastructures for large Fortune 100 companies. Since its release, his core focus has been Active Directory. He was the technical leader and responsible for the engineering and architecture of one of the most complex and largest AD infrastructures used by one of the world’s largest financial institutions. This included ongoing maintenance and major enhancements of not only a highly secure authentication environment, but also of all the supporting toolsets required to monitor its health and integrity. This experience has given him a very strong knowledge of a variety of Microsoft products and best practices. Now that Eric has moved to consulting with Secure Ideas, he continues to utilize his knowledge of Active Directory, both in exploiting common configurations in penetration tests as well as providing training and awareness briefings to multiple audiences.


Live Training Events

June 27-28, 2023

Tuesday:11:00 AM – 4:00 PM*
Wednesday:12:00 PM – 4:00 PM
* Class time begins an hour early to set-up VMs and other resources.
All times are Eastern.
Register for Live Training

September 26-27, 2023

Tuesday:11:00 AM – 4:00 PM*
Wednesday:12:00 PM – 4:00 PM
* Class time begins an hour early to set-up VMs and other resources.
All times are Eastern.

Instructor: Eric Kuehn

Register for Live Training

Join the Antisyphon Training Discord Server!
  • Twitter
  • LinkedIn
  • Mastodon
PROMPT#

Copyright © 2023 Antisyphon

Powered by PressBook Dark WordPress theme