Discovery with ADRecon
|
In this course, we cover the ADRecon tool, which allows you to extract valuable information from the Active Directory, including users, security groups, computers, security policies, and even Kerberos tickets.
The Active Directory of a company is a valuable source of information for a red team specialist. In there, you can find information about the users, computers, and even security policies. In this course, Discovery with ADRecon, you will learn about ADRecon, developed by Prashant Mahajan, which enables red team specialists to generate interesting reports from the Active Directory of a target company. First, you will discover the importance of the Active Directory data in a red team engagement and how this data can help you in further attacks. Then, you will see how to use ADRecon tool to extract data from your client’s Active Directory and generate a complete report about the environment. Finally, you will explore how to perform a Kerberoast attack using the ADRecon tool, in which you will gather hashed credentials from the Active Directory and crack them using Hashcat. When you are finished with this course, you will have the skills and knowledge to extract valuable information from the AD and plan your next attacks. This course covers five important tactics from the MITRE ATT&CK Framework: Password Policy Discovery (T1201), Permission Groups Discovery (T1069), Account Discovery (T1087), Data from Information Repositories (T1213) and Kerberoasting (T1208).
Author Name: Ricardo Reimao
Author Description:
Ricardo is a Cybersecurity Consultant based in Toronto (Canada). He has 14+ years of IT experience, 10 of them in the IT Security field. His main interests are: SIEM solutions (IBM QRadar), Enterprise Security Risk, Penetration Testing, Security processes/procedures and Network Security.
User Reviews
Be the first to review “Discovery with ADRecon”
Related Products
Web Application Penetration Testing with Burp Suite
Want to learn how to use Burp beyond just the capture of requests and responses? This course helps get you up and running quickly to take advantage of all the functionality in the Burp Suite.
IDA Pro Concepts and Basic Functionality
The ability to reverse engineer binary code is accomplished through the use of complex tools which translate machine code. This course will teach you everything you need to know about IDA Pro to get started using this indispensable tool.
Network Pen Testing with Python
A thorough assessment of an environment requires simulating a high volume of offensive techniques within a fixed time frame. This course will teach you how to automate penetration testing with Python.
Command and Control with Sliver
Are you looking for a versatile command and control server with implants for almost every architecture? In this course, you will learn Command and Control using Sliver.
Post Exploitation with Meterpreter
In a penetration test, escalating your privileges and exfiltrating data are some of the most important tasks of the assessment. This course will teach you how to use the Meterpreter tool for post-exploitation tasks.
Post Exploitation with Kali Linux
Kali Linux is a flavor of Linux that comes pre-loaded with many security tools for all levels of the attack kill chain. This course will teach you about post exploitation techniques using Kali Linux.
There are no reviews yet.