What you'll learn

Active Directory environments are prime targets for attackers due to their critical role in managing authentication and access control across networks. Many organizations struggle to defend against sophisticated exploitation techniques that can compromise these environments, allowing attackers to escalate privileges and gain unauthorized access to sensitive systems. In this course, Active Directory Exploitation, you’ll learn how to identify and exploit vulnerabilities in Active Directory environments. First, you’ll explore methods for obtaining credentials, including NTLM and Kerberos authentication, password spraying with Hydra, capturing NTLM hashes with Responder, and credential dumping with Mimikatz. Next, you’ll dive into Kerberoasting techniques, where you’ll perform Kerberoasting with Rubeus, conduct AS-REP attacks, and execute pass-the-ticket attacks. Finally, you’ll learn how to create and use golden and silver tickets for privilege escalation and network access. When you’re finished with this course, you’ll have the skills and knowledge of Active Directory exploitation needed to identify, exploit, and mitigate AD security risks effectively.