- Course
Active Directory for Offensive Security Professionals
This course will teach you how to enumerate and exploit vulnerabilities and misconfigurations in Active Directory infrastructures. This is an essential skill needed to pass the OffSec OSCP exam.
Advanced
- Course
Active Directory for Offensive Security Professionals
This course will teach you how to enumerate and exploit vulnerabilities and misconfigurations in Active Directory infrastructures. This is an essential skill needed to pass the OffSec OSCP exam.
Advanced
Get started today
Access this course and other top-rated tech content with one of our business plans.
Try this course for free
Access this course and other top-rated tech content with one of our individual plans.
This course is included in the libraries shown below:
- Security
What you'll learn
Penetration testing involves many disciplines, but understanding Active Directory is essential, as it is the most widely used on-premises directory service in the world, making it a primary target in enterprise environments.
In this course, Active Directory for Offensive Security Professionals, you’ll learn to enumerate and exploit vulnerabilities and misconfigurations in Active Directory infrastructures.
First, you’ll explore Active Directory reconnaissance where you will learn common enumeration tools and techniques for finding vulnerabilities and misconfigurations.
Next, you’ll discover Kerberos, the three-headed dog. You'll explore how it operates in an Active Directory environment and how you can exploit misconfigurations and weaknesses in Kerberos.
Finally, you’ll learn how to use post-exploitation tools, such as Mimikatz, to escalate your privileges and laterally move through the Active Directory infrastructure.
By the end of this course, you will gain the skills necessary to effectively identify and exploit AD vulnerabilities, preparing you for real-world scenarios and OSCP exam success.
Active Directory for Offensive Security Professionals
Advanced
Table of contents
John Tear is a seasoned offensive security specialist with over two decades of dedicated experience in the field of IT security and 7 years in cybersecurity. Possessing the coveted OSCE3 certification, John is a recognized authority in the UK civil nuclear sector at identifying vulnerabilities, exploiting those vulnerabilities, and helping defenders to protect their infrastructure.