Hack3: Attacks on Windows-based Networks

Topics

Windows-based networks

• Focus: Active Directory
• Structure and trust determination
• Privilege and authentication concepts
• Hash types in the Microsoft world
• Certificate Services (AD CS)

Attacks on individual systems and network protocols 

• Exploitation of vulnerabilities
• Attacks on authentication mechanisms
• Exploitation of weak service configurations
• Attacks on Kerberos (e.g. Golden Ticket)
• Traffic-based attacks (NBNS, MitM)

Privilege escalation/extension

• Inadequate password protection
• Exploitation of "features", "traces"
• Access tokens and "cached" passwords
• Pass-the-hash attacks
• Determination of authorization levels

Use of suitable tools

• Nmap and Metasploit
• PowerShell tools
• BloodHound
• Cracking tools
• Tools for special utilization purposes

Best practice protection measures

• IT security principles
• Authorization models
• Configuration recommendations

Technical requirements

Basic knowledge of Linux- and Windows-based systems and networks

Duration

Three days