We may earn an affiliate commission when you visit our partners.
Ricardo Reimao
In this course, we cover the ADRecon tool, which allows you to extract valuable information from the Active Directory, including users, security groups, computers, security policies, and even Kerberos tickets.
Read more
In this course, we cover the ADRecon tool, which allows you to extract valuable information from the Active Directory, including users, security groups, computers, security policies, and even Kerberos tickets.
Read more
In this course, we cover the ADRecon tool, which allows you to extract valuable information from the Active Directory, including users, security groups, computers, security policies, and even Kerberos tickets.
The Active Directory of a company is a valuable source of information for a red team specialist. In there, you can find information about the users, computers, and even security policies. In this course, Discovery with ADRecon, you will learn about ADRecon, developed by Prashant Mahajan, which enables red team specialists to generate interesting reports from the Active Directory of a target company. First, you will discover the importance of the Active Directory data in a red team engagement and how this data can help you in further attacks. Then, you will see how to use ADRecon tool to extract data from your client’s Active Directory and generate a complete report about the environment. Finally, you will explore how to perform a Kerberoast attack using the ADRecon tool, in which you will gather hashed credentials from the Active Directory and crack them using Hashcat. When you are finished with this course, you will have the skills and knowledge to extract valuable information from the AD and plan your next attacks. This course covers five important tactics from the MITRE ATT&CK Framework: Password Policy Discovery (T1201), Permission Groups Discovery (T1069), Account Discovery (T1087), Data from Information Repositories (T1213) and Kerberoasting (T1208).
Register for this course and see more details by visiting:
OpenCourser.com/course/2n9en2/discovery
Here's a deal for you
We found an offer that may be relevant to this course.
Save money when you learn.
All coupon codes, vouchers, and discounts are applied automatically unless otherwise noted.
What's inside
Syllabus
Course Overview
Active Directory Enumeration
Resources
Good to know
Good to know
Know what's good ,
what to watch for , and
possible dealbreakers
Develops skills and knowledge highly relevant to a Red Team specialist's role
Examines Active Directory enumeration, which is critical for red team engagements
Leverages a hands-on approach with the ADRecon tool, enabling learners to gain practical experience
Covers essential tactics outlined in the MITRE ATT&CK Framework, providing industry-standard knowledge
Emphasizes the importance of extracting valuable Active Directory data, enhancing learners' understanding of reconnaissance
Prerequisites may be required for learners new to Active Directory or red teaming concepts
Save this course
Save Discovery with ADRecon to your list so you can find it easily later:
Save
Save
Activities
Be better prepared
before
your course. Deepen your understanding
during
and
after
it. Supplement your coursework and achieve mastery of the topics covered
in Discovery with ADRecon with these
activities:
Review Active Directory enumeration tools
Show steps
Reviewing tools used for Active Directory enumeration can help you quickly familiarize with the ADRecon tool and its capabilities.
Show steps
-
Research common Active Directory enumeration tools
-
Identify key features and functionalities of each tool
-
Hands-on practice with popular tools like ADExplorer, BloodHound, and PowerView
Build a knowledge base of Active Directory enumeration techniques
Show steps
Compiling resources and tools related to Active Directory enumeration can serve as a valuable reference for future projects and refresh knowledge.
Show steps
-
Gather documentation, tutorials, and tools related to ADRecon and Active Directory enumeration
-
Organize the resources into a structured format (e.g., folders, bookmarks, or a knowledge management system)
-
Regularly update the compilation with new or relevant resources
Participate in a study group for Active Directory enumeration
Show steps
Collaborative learning can enhance your understanding, motivate you to stay engaged, and provide a platform for exchanging ideas with peers.
Show steps
-
Form or join a study group with fellow students or colleagues
-
Organize regular meetings to discuss the course material, share insights, and work on exercises together
-
Provide support and encouragement to each other throughout the learning journey
Five other activities
Expand to see all activities and additional details
Show all eight activities
Active Directory reconnaissance exercises
Show steps
Regular practice with reconnaissance exercises will build your proficiency in using ADRecon and enhance your understanding of Active Directory enumeration.
Show steps
-
Set up a lab environment with a target Active Directory server
-
Use ADRecon to gather information about users, groups, computers, and security policies
-
Analyze the collected data to identify potential security vulnerabilities
Follow expert walkthroughs on advanced Active Directory enumeration
Show steps
Seeking guidance from expert tutorials can accelerate your progress, introduce advanced techniques, and help you overcome common challenges.
Show steps
-
Identify reputable sources for tutorials on advanced Active Directory enumeration
-
Follow step-by-step instructions to learn new techniques and strategies
-
Apply the concepts in a lab environment to solidify your understanding
Develop an Active Directory reconnaissance report
Show steps
Creating a comprehensive report based on your reconnaissance findings not only solidifies your understanding but also provides valuable documentation for your team or organization.
Show steps
-
Organize the reconnaissance data into logical sections
-
Analyze the data to identify potential security risks and vulnerabilities
-
Generate a detailed report outlining your findings and recommendations
Assist in Active Directory vulnerability assessments
Show steps
Volunteering in real-world Active Directory assessments provides practical experience, exposes you to diverse environments, and contributes to the security of organizations.
Show steps
-
Reach out to non-profit organizations or companies offering opportunities in Active Directory security
-
Assist in conducting vulnerability scans, analyzing results, and documenting findings
-
Gain hands-on experience in applying your reconnaissance skills to real-world scenarios
Participate in Capture the Flag (CTF) competitions focused on Active Directory
Show steps
CTFs offer a gamified and challenging environment to test and improve your Active Directory enumeration skills against other security enthusiasts.
Show steps
-
Identify CTF competitions that focus on Active Directory enumeration
-
Form or join a team to participate in the competition
-
Analyze the challenges, develop strategies, and demonstrate your reconnaissance abilities
Review Active Directory enumeration tools
Show steps
Reviewing tools used for Active Directory enumeration can help you quickly familiarize with the ADRecon tool and its capabilities.
Show steps
Show steps
Show steps
- Research common Active Directory enumeration tools
- Identify key features and functionalities of each tool
- Hands-on practice with popular tools like ADExplorer, BloodHound, and PowerView
Build a knowledge base of Active Directory enumeration techniques
Show steps
Compiling resources and tools related to Active Directory enumeration can serve as a valuable reference for future projects and refresh knowledge.
Show steps
Show steps
Show steps
- Gather documentation, tutorials, and tools related to ADRecon and Active Directory enumeration
- Organize the resources into a structured format (e.g., folders, bookmarks, or a knowledge management system)
- Regularly update the compilation with new or relevant resources
Participate in a study group for Active Directory enumeration
Show steps
Collaborative learning can enhance your understanding, motivate you to stay engaged, and provide a platform for exchanging ideas with peers.
Show steps
Show steps
Show steps
- Form or join a study group with fellow students or colleagues
- Organize regular meetings to discuss the course material, share insights, and work on exercises together
- Provide support and encouragement to each other throughout the learning journey
Five other activities
Expand to see all activities and additional details
Show all eight activities
Active Directory reconnaissance exercises
Show steps
Regular practice with reconnaissance exercises will build your proficiency in using ADRecon and enhance your understanding of Active Directory enumeration.
Show steps
Show steps
Show steps
- Set up a lab environment with a target Active Directory server
- Use ADRecon to gather information about users, groups, computers, and security policies
- Analyze the collected data to identify potential security vulnerabilities
Follow expert walkthroughs on advanced Active Directory enumeration
Show steps
Seeking guidance from expert tutorials can accelerate your progress, introduce advanced techniques, and help you overcome common challenges.
Show steps
Show steps
Show steps
- Identify reputable sources for tutorials on advanced Active Directory enumeration
- Follow step-by-step instructions to learn new techniques and strategies
- Apply the concepts in a lab environment to solidify your understanding
Develop an Active Directory reconnaissance report
Show steps
Creating a comprehensive report based on your reconnaissance findings not only solidifies your understanding but also provides valuable documentation for your team or organization.
Show steps
Show steps
Show steps
- Organize the reconnaissance data into logical sections
- Analyze the data to identify potential security risks and vulnerabilities
- Generate a detailed report outlining your findings and recommendations
Assist in Active Directory vulnerability assessments
Show steps
Volunteering in real-world Active Directory assessments provides practical experience, exposes you to diverse environments, and contributes to the security of organizations.
Show steps
Show steps
Show steps
- Reach out to non-profit organizations or companies offering opportunities in Active Directory security
- Assist in conducting vulnerability scans, analyzing results, and documenting findings
- Gain hands-on experience in applying your reconnaissance skills to real-world scenarios
Participate in Capture the Flag (CTF) competitions focused on Active Directory
Show steps
CTFs offer a gamified and challenging environment to test and improve your Active Directory enumeration skills against other security enthusiasts.
Show steps
Show steps
Show steps
- Identify CTF competitions that focus on Active Directory enumeration
- Form or join a team to participate in the competition
- Analyze the challenges, develop strategies, and demonstrate your reconnaissance abilities
Career center
Learners who complete Discovery with ADRecon will develop knowledge and skills
that may be useful to these careers:
Red Team Specialist
Red Team Specialist
A Red Team Specialist is responsible for conducting security assessments and identifying vulnerabilities in an organization's computer systems and networks. As a Red Team Specialist, you would use ADRecon to gather information about an organization's Active Directory environment, which can help you identify potential security risks and vulnerabilities. This course can be useful for you as a Red Team Specialist, as it will help you build a foundation in Active Directory security.
Active Directory Administrator
Active Directory Administrator
An Active Directory Administrator is responsible for managing an organization's Active Directory environment. As an Active Directory Administrator, you would use ADRecon to gather information about your organization's Active Directory environment, which can help you identify potential security risks and vulnerabilities. This course can be useful for you as an Active Directory Administrator, as it will help you build a foundation in Active Directory security.
Security Engineer
Security Engineer
A Security Engineer is responsible for designing, implementing, and maintaining an organization's security infrastructure. As a Security Engineer, you would use ADRecon to gather information about an organization's Active Directory environment, which can help you identify potential security risks and vulnerabilities. This course may be useful in your career as a Security Engineer, as it can help you build a foundation in Active Directory security.
Network Engineer
Network Engineer
A Network Engineer is responsible for designing, implementing, and maintaining an organization's computer networks. As a Network Engineer, you would use ADRecon to gather information about an organization's Active Directory environment, which can help you identify potential security risks and vulnerabilities. This course may be useful in your career as a Network Engineer, as it can help you build a foundation in Active Directory security.
Systems Administrator
Systems Administrator
A Systems Administrator is responsible for maintaining and administering an organization's computer systems and networks. As a Systems Administrator, you would use ADRecon to gather information about an organization's Active Directory environment, which can help you identify potential security risks and vulnerabilities. This course may be useful in your career as a Systems Administrator, as it can help you build a foundation in Active Directory security.
Cybersecurity Analyst
Cybersecurity Analyst
A Cybersecurity Analyst is responsible for protecting an organization's computer systems and networks from cyberattacks. As a Cybersecurity Analyst, you would use ADRecon to gather information about an organization's Active Directory environment, which can help you identify potential security risks and vulnerabilities. This course may be useful in your career as a Cybersecurity Analyst, as it can help you build a foundation in Active Directory security.
Security Consultant
Security Consultant
A Security Consultant is responsible for providing security advice and guidance to organizations. As a Security Consultant, you would use ADRecon to gather information about an organization's Active Directory environment, which can help you identify potential security risks and vulnerabilities. This course can be useful for you as a Security Consultant, as it will help you build a foundation in Active Directory security.
Compliance Analyst
Compliance Analyst
A Compliance Analyst is responsible for ensuring that an organization complies with all applicable laws and regulations. As a Compliance Analyst, you would use ADRecon to gather information about an organization's Active Directory environment, which can help you identify potential security risks and vulnerabilities. This course may be useful in your career as a Compliance Analyst, as it can help you build a foundation in Active Directory security.
Penetration Tester
Penetration Tester
A Penetration Tester is responsible for testing an organization's computer systems and networks for vulnerabilities. As a Penetration Tester, you would use ADRecon to gather information about an organization's Active Directory environment, which can help you identify potential security risks and vulnerabilities. This course may be useful in your career as a Penetration Tester, as it can help you build a foundation in Active Directory security.
Forensic Analyst
Forensic Analyst
A Forensic Analyst is responsible for investigating computer crimes and cyberattacks. As a Forensic Analyst, you would use ADRecon to gather information about an organization's Active Directory environment, which can help you identify potential security risks and vulnerabilities. This course may be useful in your career as a Forensic Analyst, as it can help you build a foundation in Active Directory security.
Vulnerability Researcher
Vulnerability Researcher
A Vulnerability Researcher is responsible for identifying and reporting vulnerabilities in software and systems. As a Vulnerability Researcher, you would use ADRecon to gather information about an organization's Active Directory environment, which can help you identify potential security risks and vulnerabilities. This course may be useful in your career as a Vulnerability Researcher, as it can help you build a foundation in Active Directory security.
Audit Associate
Audit Associate
An Audit Associate is responsible for performing audits of an organization's financial records and operations. As an Audit Associate, you would use ADRecon to gather information about an organization's Active Directory environment, which can help you identify potential security risks and vulnerabilities. This course may be useful in your career as an Audit Associate, as it can help you build a foundation in Active Directory security.
Information Security Analyst
Information Security Analyst
An Information Security Analyst is responsible for protecting an organization's computer systems and networks from unauthorized access, use, disclosure, disruption, modification, or destruction. As an Information Security Analyst, you would use ADRecon to gather information about an organization's Active Directory environment, which can help you identify potential security risks and vulnerabilities. This course may be useful in your career as an Information Security Analyst, as it can help you build a foundation in Active Directory security.
Blue Team Specialist
Blue Team Specialist
A Blue Team Specialist is responsible for defending an organization's computer systems and networks from cyberattacks. As a Blue Team Specialist, you would use ADRecon to gather information about an organization's Active Directory environment, which can help you identify potential security risks and vulnerabilities. This course may be useful in your career as a Blue Team Specialist, as it can help you build a foundation in Active Directory security.
Risk Analyst
Risk Analyst
A Risk Analyst is responsible for identifying and assessing risks to an organization's business operations. As a Risk Analyst, you would use ADRecon to gather information about an organization's Active Directory environment, which can help you identify potential security risks and vulnerabilities. This course may be useful in your career as a Risk Analyst, as it can help you build a foundation in Active Directory security.
For more career information including salaries, visit:
OpenCourser.com/course/2n9en2/discovery
Reading list
We've selected seven books
that we think will supplement your
learning. Use these to
develop background knowledge, enrich your coursework, and gain a
deeper understanding of the topics covered in
Discovery with ADRecon.
Save
Although not focused on the Active Directory, this book provides an in-depth understanding of the Windows internals, which can be valuable for comprehending AD's behavior and interactions.
Provides a collection of recipes for common Active Directory tasks. It covers a wide range of topics, including user management, group management, and security configuration. This book valuable resource for anyone who wants to learn more about Active Directory administration.
Covers various aspects of Windows network security, including Active Directory security. It provides a comprehensive understanding of the security mechanisms and vulnerabilities associated with AD, complementing the course's focus on discovery and exploitation.
Provides an in-depth guide to Metasploit, a powerful tool for penetration testing. While not specifically covering ADRecon, it offers valuable insights into exploit development and exploitation techniques, which can enhance the course's learning.
Provides a comprehensive introduction to hacking, covering topics such as reconnaissance, exploitation, and post-exploitation. While not specific to ADRecon, it offers valuable insights into the thought process and techniques used by attackers.
Provides a comprehensive introduction to Active Directory, covering topics such as architecture, deployment, and management. While not specific to ADRecon, it offers valuable background knowledge for understanding the course's concepts.
Provides practical recipes for managing and securing Active Directory. While not specific to ADRecon, it offers valuable insights into the administrative and operational aspects of AD, complementing the course's focus on discovery and reconnaissance.
For more information about how these books relate to this course, visit:
OpenCourser.com/course/2n9en2/discovery
Share
Similar courses
Here are nine courses similar to
Discovery with ADRecon.
Network Discovery and Enumeration with PowerShell
OpenCourser.com/course/8puyip/network
Network Discovery and Enumeration with PowerShell
Most relevant
Volt Typhoon: T1003.003 Credential Dumping Emulation
OpenCourser.com/course/n9vu6k/volt
Volt Typhoon: T1003.003 Credential Dumping Emulation
Most relevant
Privilege Escalation with Certify
OpenCourser.com/course/z1ua66/privilege
Privilege Escalation with Certify
Most relevant
Discovery with BloodHound
OpenCourser.com/course/w0668f/discovery
Discovery with BloodHound
Most relevant
Secure Your Data at Rest
OpenCourser.com/course/ml5s15/secure
Secure Your Data at Rest
Most relevant
Discovery with Seatbelt
OpenCourser.com/course/9hk21v/discovery
Discovery with Seatbelt
Most relevant
AI Applications with Watson
OpenCourser.com/course/w7r6io/ai
AI Applications with Watson
Developing Mobile Applications Protected by Azure Active Directory
OpenCourser.com/course/x3bd10/developing
Developing Mobile Applications Protected by Azure Active...
Managing Identities in Microsoft Azure Active Directory
OpenCourser.com/course/miiuy9/managing
Managing Identities in Microsoft Azure Active Directory
Time
22 hours
Level
Intermediate
Via
Pluralsight
Instructor
Ricardo Reimao
Language
English
This course belongs to a
collection
called
Red Team Tools . It's comprised of 22 courses:
- Selecting the Right Tool(s) for Your Red Team Operation
- Privilege Escalation and Client Execution with MSFVenom
- Initial Access with Aircrack-ng
- Initial Access with WiFi-Pumpkin
- Credential Access with THC Hydra
- Command and Control with Covenant
- Command and Control with Pupy
- Red Team Tools for Emulated Adversary Techniques with MITRE ATT&CK
- Technical Information Gathering with theHarvester
- Defense Evasion with Invoke-Obfuscation
- Credential Access with Hashcat
- Credential Access with John the Ripper
- Credential Access with Mimikatz
- Credential Access with Responder
- Discovery with ADRecon (viewing)
- Discovery with BloodHound
- Lateral Movement with Mimikatz 2
- Lateral Movement with PsExec
- Collection with PowerSploit
- Technical Information Gathering with Recon-ng
- Initial Access with Luckystrike
- Lateral Movement with WMIOps
Good to know
Develops skills and knowledge highly relevant to a Red Team specialist's role
Examines Active Directory enumeration, which is critical for red team engagements
Leverages a hands-on approach with the ADRecon tool, enabling learners to gain practical experience
Covers essential tactics outlined in the MITRE ATT&CK Framework, providing industry-standard knowledge
Emphasizes the importance of extracting valuable Active Directory data, enhancing learners' understanding of reconnaissance
Prerequisites may be required for learners new to Active Directory or red teaming concepts
Our mission
OpenCourser helps millions of learners each year. People visit us to learn workspace skills, ace their exams, and nurture their curiosity.
Our extensive catalog contains over 50,000 courses and twice as many books. Browse by search, by topic, or even by career interests. We'll match you to the right resources quickly.
Find this site helpful? Tell a friend about us.
Affiliate disclosure
We're supported by our community of learners. When you purchase or subscribe to courses and programs or purchase books, we may earn a commission from our partners.
Your purchases help us maintain our catalog and keep our servers humming without ads.
Thank you for supporting OpenCourser.
© 2016 - 2024 OpenCourser