Specialized Hunts: Threat Hunting within Active Directory
|
Active Directory is used in most medium and large companies, making it a significant target for abuse. This course will teach you how to hunt for threats in Active Directory to uncover malicious activity rapidly, allowing you to respond faster
Medium and large companies are constant targets for attackers, and abusing Active Directory is one method used in attacks. In this course, Specialized Hunts: Threat Hunting within Active Directory, you’ll learn to hunt for threats specific to Active Directory. First, you’ll explore Kerberos attacks and how to discover them. Next, you’ll discover different persistence methods used on AD, and how to hunt for them. Finally, you’ll learn how to hunt for replication based attacks on AD. When you’re finished with this course, you’ll have the skills and knowledge of threat hunting needed to hunt for threats specific to Active Directory.
Author Name: Guillaume Ross
Author Description:
Guillaume Ross is an experienced information security professional, providing services to many organizations as the lead consultant and founder of Caffeine Security Inc. Having worked in multiple verticals, from Fortune 50 to startups, his specialty is providing the right security program and architecture for each specific environment and company, and leading blue teams.
User Reviews
Be the first to review “Specialized Hunts: Threat Hunting within Active Directory”
Related Products
Microsoft Information Protection and Compliance: Managing Insider and Privacy Risk
Most companies are aware of threats posed by bad actors outside of the organization, but is your company prepared for threats posed by insiders?
Designing/Deploying Exchange 2016: Compliance & Archiving
This course will teach you about Exchange 2016 compliance and archiving. Along with other courses in the series, this course will help to prepare you for the Microsoft 70-345 exam.
PCI DSS: The State of Cardholder Data Attacks
In this course, you’ll learn about the criminals’ ways of working from an experienced (PFI) Forensic Investigator and discover what actually happens in the course of a PCI forensic investigation.
Microsoft Information Protection and Compliance: Implementing Data Loss Prevention (DLP)
Securing data is a core skill, and data loss prevention (DLP) sits at the heart of that skill. This course teaches you how to work with Microsoft Purview and other tools to implement DLP, and prepare you for the DLP section of the SC-400 exam.
Securing SQL Server Applications
Dive deep into SQL Server application security! Learn vital techniques to protect data, detect vulnerabilities, and implement robust security practices to safeguard your applications.
SnowPro Advanced Data Engineer: Security
This course introduces Snowflake’s security model and features, which are critical for performing data engineering tasks and keeping your data and account safe. They are required components of the SnowPro Data Engineer exam.
There are no reviews yet.