Active Directory and Windows Security

Lessons

1. 1

   Active Directory: The Enterprise Attack Surface

   Free

   Understand what Active Directory is (domains, forests, trusts, OUs, GPOs) and why it is a primary breach target.

   Intermediate·20 min
2. 2

   AD Authentication: Kerberos and NTLM

   Walk the Kerberos flow (AS-REQ, TGT, TGS, service tickets) and where NTLM falls back, the basis for AD attacks.

   Advanced·45 min
3. 3

   Common AD Attack Techniques

   Explain Pass-the-Hash, Pass-the-Ticket, Kerberoasting, AS-REP Roasting, and Golden Ticket attacks.

   Advanced·50 min
4. 4

   BloodHound and Attack Paths

   Use BloodHound's graph analysis to map AD and find the shortest path to Domain Admin.

   Advanced·40 min
5. 5

   AD Defense and Monitoring

   Apply tiered administration, Protected Users, Credential Guard, disabling NTLM, and monitoring key Windows Event IDs.

   Advanced·45 min
6. 6

   Active Directory Security Job Readiness

   Translate AD-security skills into job titles, a resume, interview answers, certifications, and a portfolio checklist.

   Advanced·25 min