Learn and exploit Active Directory networks through core security issues stemming from misconfigurations.

Approximately 90% of the Global Fortune 1000 companies use Active Directory (AD). If an organisation's estate uses Microsoft Windows, you are almost guaranteed to find AD. Since AD is used for Identity and Access Management of the entire estate, it holds the keys to the kingdom, making it a very likely target for attackers. This module will teach you the basics of AD and take you on the typical journey of compromising AD during a red team. You will learn to breach AD, enumerate AD, exploit AD, and finally deploy persistence through AD.

Active Directory Basics

This room will introduce the basic concepts and functionality provided by Active Directory.

Breaching Active Directory

This network covers techniques and tools that can be used to acquire that first set of AD credentials that can then be used to enumerate AD.

Enumerating Active Directory

This room covers various Active Directory enumeration techniques, their use cases as well as drawbacks.

Lateral Movement and Pivoting

Learn about common techniques used to move laterally across a Windows network.

Exploiting Active Directory

Learn common AD exploitation techniques that can allow you to reach your goal in an AD environment.

Persisting Active Directory

Learn about common Active Directory persistence techniques that can be used post-compromise to ensure the blue team will not be able to kick you out during a red team exercise.

Credentials Harvesting

Apply current authentication models employed in modern environments to a red team approach.

Lock in what you learned with a recap. Earn points and keep your streak.

Need to know

Windows Fundamentals

Get hands-on access to Windows and it's security controls. These basics will help you in identifying, exploiting and defending Windows.

Network Security Evasion

Learn how to bypass and evade different security solutions used in the industry, such as firewalls and IDS/IPS.

What are modules?

A learning pathway is made up of modules, and a module is made of bite-sized rooms (think of a room like a mini security lab).

Hierarchical diagram showing how learning pathways contain modules, which contain individual rooms.

Compromising Active Directory