-
Course
- Security
Active Directory for Offensive Security Professionals
This course will teach you how to enumerate and exploit vulnerabilities and misconfigurations in Active Directory infrastructures. This is an essential skill needed to pass the OffSec OSCP exam.
What you'll learn
Penetration testing involves many disciplines, but understanding Active Directory is essential, as it is the most widely used on-premises directory service in the world, making it a primary target in enterprise environments.
In this course, Active Directory for Offensive Security Professionals, you’ll learn to enumerate and exploit vulnerabilities and misconfigurations in Active Directory infrastructures.
First, you’ll explore Active Directory reconnaissance where you will learn common enumeration tools and techniques for finding vulnerabilities and misconfigurations.
Next, you’ll discover Kerberos, the three-headed dog. You'll explore how it operates in an Active Directory environment and how you can exploit misconfigurations and weaknesses in Kerberos.
Finally, you’ll learn how to use post-exploitation tools, such as Mimikatz, to escalate your privileges and laterally move through the Active Directory infrastructure.
By the end of this course, you will gain the skills necessary to effectively identify and exploit AD vulnerabilities, preparing you for real-world scenarios and OSCP exam success.
Table of contents
About the author
John Tear is a seasoned offensive security specialist with over two decades of dedicated experience in the field of IT security and 7 years in cybersecurity. Possessing the coveted OSCE3 certification, John is a recognized authority in the UK civil nuclear sector at identifying vulnerabilities, exploiting those vulnerabilities, and helping defenders to protect their infrastructure.
More Courses by John