Expanded Library

Specialized Hunts: Threat Hunting within Active Directory

by Guillaume Ross

Active Directory is used in most medium and large companies, making it a significant target for abuse. This course will teach you how to hunt for threats in Active Directory to uncover malicious activity rapidly, allowing you to respond faster

What you'll learn

Medium and large companies are constant targets for attackers, and abusing Active Directory is one method used in attacks. In this course, Specialized Hunts: Threat Hunting within Active Directory, you’ll learn to hunt for threats specific to Active Directory. First, you’ll explore Kerberos attacks and how to discover them. Next, you’ll discover different persistence methods used on AD, and how to hunt for them. Finally, you’ll learn how to hunt for replication based attacks on AD. When you’re finished with this course, you’ll have the skills and knowledge of threat hunting needed to hunt for threats specific to Active Directory.

About the author

Guillaume Ross is an experienced information security professional, providing services to many organizations as the lead consultant and founder of Caffeine Security Inc. Having worked in multiple verticals, from Fortune 50 to startups, his specialty is providing the right security program and architecture for each specific environment and company, and leading blue teams.

Ready to upskill? Get started