A directory service is normally used for the technical organization of computers, users, groups and other object classes in company networks. Active Directory domain services based on the domain principle of trust are widespread in Windows-based networks. If an attacker initially manages to penetrate an internal network from the outside, they can in most cases extend their privileges within the utilized directory service at reasonable expense. The objective of the training course "Attacks on Windows-based Networks" is to provide a deeper insight into attackers' methods and show countermeasures. Theoretical concepts will be explained and learned attack vectors will be tested by means of practical "hands-on" exercises.