Active Directory Hacking for Beginners (5+ hrs) 🔐
Learn ethical hacking of Active Directory with over 5 hours of practical content. Enroll in the full course and live training now!
The Cyber Mentor
295.1K views • Aug 4, 2023
About this video
Practical Ethical Hacking Course: https://academy.tcm-sec.com/p/practical-ethical-hacking-the-complete-course
Live Training: https://certifications.tcm-sec.com/live-training/
PJPT: https://certifications.tcm-sec.com/pjpt/
PNPT: https://certifications.tcm-sec.com/pnpt/
0:00 - Introduction
04:02 - Installing VMWare / VirtualBox
10:17 - Installing Linux
15:50 - Configuring VirtualBox
19:06 - Installing PMK
21:44 - Active Directory Overview
26:58 - Physical Active Directory Components
32:45 - Logical Active Directory Components
40:12 - AD Lab Overview
43:13 - Cloud Lab Alternative
45:17 - Downloading the Necessary ISOs
48:06 - Setting up the Domain Controller
1:01:45 - Setting Up the User Machines
1:09:38 - Setting Up Users, Groups, and Policies
1:25:23 - Joining Our Machines to the Domain
1:34:11 - Initial AD Attacks Overview
1:38:07 - LLMNR Poisoning Overview
1:45:34 - Capturing NTLMv2 Hashes with Responder
1:50:20 - Password Cracking with Hashcat
2:01:52 - LLMNR Poisoning Defenses
2:04:41 - SMB Relay Attacks Overview
2:10:03 - Quick Lab Update
2:11:02 - Discovering Hosts with SMB Signing Disabled
2:14:40 - SMB Relay Attacks Part 1
2:19:34 - SMB Relay Attacks Part 2
2:23:40 - SMB Relay Attack Defenses
2:26:15 - Gaining Shell Access
2:34:02 - IPv6 Attacks Overview
2:38:03 - Installing mitm6
2:39:20 - Setting up LDAPS
2:41:43 - IPv6 DNS Attacks
2:49:27 - IPv6 Attack Defenses
2:52:27 - Passback Attacks
2:57:43 - Other Attack Vectors and Strategies
3:06:27 - Post Compromise Enumeration Intro
3:08:29 - PowerView Overview
3:10:41 - Domain Enumeration with PowerView
3:26:00 - Bloodhound Overview
3:29:33 - Grabbing Data with Invoke Bloodhound
3:32:43 - Using Bloodhound to Review Domain Data
3:40:19 - Post-Compromise Attacks Intro
3:41:21 - Pass the Hash and Password Overview
3:44:25 - Installing crackmapexec
3:45:04 - Pass the Password Attacks
3:52:11 - Dumping Hashes with secretsdump
3:55:22 - Cracking NTLM Hashes with Hashcat
3:58:29 - Pass the Hash Attacks
4:04:54 - Pass Attack Mitigations
4:07:36 - Token Impersonation Overview
4:11:25 - Token Impersonation with Incognito
4:18:28 - Token Impersonation Mitigation
4:21:11 - Kerberoasting Overview
4:26:22 - Kerberoasting Walkthrough
4:30:14 - Kerberoasting Defenses
4:31:23 - GPP Password Attacks Overview
4:34:48 - Abusing GPP Part 1
4:43:34 - Abusing GPP Part 2
4:47:45 - URL File Attacks
4:53:22 - Mimikatz Overview
4:58:57 - Credential Dumping with Mimikatz
5:08:19 - Golden Ticket Attacks
5:15:36 - Conclusion
Pentests & Security Consulting: https://tcm-sec.com
Get Trained: https://academy.tcm-sec.com
Get Certified: https://certifications.tcm-sec.com
Merch: https://merch.tcm-sec.com
Sponsorship Inquiries: info@thecybermentor.com
📱Social Media📱
___________________________________________
Twitter: https://twitter.com/thecybermentor
Twitch: https://www.twitch.tv/thecybermentor
Instagram: https://instagram.com/thecybermentor
LinkedIn: https://www.linkedin.com/in/heathadams
TikTok: https://tiktok.com/@thecybermentor
Discord: https://discord.gg/tcm
💸Donate💸
___________________________________________
Like the channel? Please consider supporting me on Patreon:
https://www.patreon.com/thecybermentor
Support the stream (one-time): https://streamlabs.com/thecybermentor
Hacker Books:
Penetration Testing: A Hands-On Introduction to Hacking: https://amzn.to/31GN7iX
The Hacker Playbook 3: https://amzn.to/34XkIY2
Hacking: The Art of Exploitation: https://amzn.to/2VchDyL
The Web Application Hacker's Handbook: https://amzn.to/30Fj21S
Real-World Bug Hunting: A Field Guide to Web Hacking: https://amzn.to/2V9srOe
Social Engineering: The Science of Human Hacking: https://amzn.to/31HAmVx
Linux Basics for Hackers: https://amzn.to/34WvcXP
Python Crash Course, 2nd Edition: https://amzn.to/30gINu0
Violent Python: https://amzn.to/2QoGoJn
Black Hat Python: https://amzn.to/2V9GpQk
My Build:
lg 32gk850g-b 32" Gaming Monitor:https://amzn.to/30C0qzV
darkFlash Phantom Black ATX Mid-Tower Case: https://amzn.to/30d1UW1
EVGA 2080TI: https://amzn.to/30d2lj7
MSI Z390 MotherBoard: https://amzn.to/30eu5TL
Intel 9700K: https://amzn.to/2M7hM2p
G.SKILL 32GB DDR4 RAM: https://amzn.to/2M638Zb
Razer Nommo Chroma Speakers: https://amzn.to/30bWjiK
Razer BlackWidow Chroma Keyboard: https://amzn.to/2V7A0or
CORSAIR Pro RBG Gaming Mouse: https://amzn.to/30hvg4P
Sennheiser RS 175 RF Wireless Headphones: https://amzn.to/31MOgpu
My Recording Equipment:
Panasonic G85 4K Camera: https://amzn.to/2Mk9vsf
Logitech C922x Pro Webcam: https://amzn.to/2LIRxAp
Aston Origin Microphone: https://amzn.to/2LFtNNE
Rode VideoMicro: https://amzn.to/309yLKH
Mackie PROFX8V2 Mixer: https://amzn.to/31HKOMB
Elgato Cam Link 4K: https://amzn.to/2QlicYx
Elgate Stream Deck: https://amzn.to/2OlchA5
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.
Live Training: https://certifications.tcm-sec.com/live-training/
PJPT: https://certifications.tcm-sec.com/pjpt/
PNPT: https://certifications.tcm-sec.com/pnpt/
0:00 - Introduction
04:02 - Installing VMWare / VirtualBox
10:17 - Installing Linux
15:50 - Configuring VirtualBox
19:06 - Installing PMK
21:44 - Active Directory Overview
26:58 - Physical Active Directory Components
32:45 - Logical Active Directory Components
40:12 - AD Lab Overview
43:13 - Cloud Lab Alternative
45:17 - Downloading the Necessary ISOs
48:06 - Setting up the Domain Controller
1:01:45 - Setting Up the User Machines
1:09:38 - Setting Up Users, Groups, and Policies
1:25:23 - Joining Our Machines to the Domain
1:34:11 - Initial AD Attacks Overview
1:38:07 - LLMNR Poisoning Overview
1:45:34 - Capturing NTLMv2 Hashes with Responder
1:50:20 - Password Cracking with Hashcat
2:01:52 - LLMNR Poisoning Defenses
2:04:41 - SMB Relay Attacks Overview
2:10:03 - Quick Lab Update
2:11:02 - Discovering Hosts with SMB Signing Disabled
2:14:40 - SMB Relay Attacks Part 1
2:19:34 - SMB Relay Attacks Part 2
2:23:40 - SMB Relay Attack Defenses
2:26:15 - Gaining Shell Access
2:34:02 - IPv6 Attacks Overview
2:38:03 - Installing mitm6
2:39:20 - Setting up LDAPS
2:41:43 - IPv6 DNS Attacks
2:49:27 - IPv6 Attack Defenses
2:52:27 - Passback Attacks
2:57:43 - Other Attack Vectors and Strategies
3:06:27 - Post Compromise Enumeration Intro
3:08:29 - PowerView Overview
3:10:41 - Domain Enumeration with PowerView
3:26:00 - Bloodhound Overview
3:29:33 - Grabbing Data with Invoke Bloodhound
3:32:43 - Using Bloodhound to Review Domain Data
3:40:19 - Post-Compromise Attacks Intro
3:41:21 - Pass the Hash and Password Overview
3:44:25 - Installing crackmapexec
3:45:04 - Pass the Password Attacks
3:52:11 - Dumping Hashes with secretsdump
3:55:22 - Cracking NTLM Hashes with Hashcat
3:58:29 - Pass the Hash Attacks
4:04:54 - Pass Attack Mitigations
4:07:36 - Token Impersonation Overview
4:11:25 - Token Impersonation with Incognito
4:18:28 - Token Impersonation Mitigation
4:21:11 - Kerberoasting Overview
4:26:22 - Kerberoasting Walkthrough
4:30:14 - Kerberoasting Defenses
4:31:23 - GPP Password Attacks Overview
4:34:48 - Abusing GPP Part 1
4:43:34 - Abusing GPP Part 2
4:47:45 - URL File Attacks
4:53:22 - Mimikatz Overview
4:58:57 - Credential Dumping with Mimikatz
5:08:19 - Golden Ticket Attacks
5:15:36 - Conclusion
Pentests & Security Consulting: https://tcm-sec.com
Get Trained: https://academy.tcm-sec.com
Get Certified: https://certifications.tcm-sec.com
Merch: https://merch.tcm-sec.com
Sponsorship Inquiries: info@thecybermentor.com
📱Social Media📱
___________________________________________
Twitter: https://twitter.com/thecybermentor
Twitch: https://www.twitch.tv/thecybermentor
Instagram: https://instagram.com/thecybermentor
LinkedIn: https://www.linkedin.com/in/heathadams
TikTok: https://tiktok.com/@thecybermentor
Discord: https://discord.gg/tcm
💸Donate💸
___________________________________________
Like the channel? Please consider supporting me on Patreon:
https://www.patreon.com/thecybermentor
Support the stream (one-time): https://streamlabs.com/thecybermentor
Hacker Books:
Penetration Testing: A Hands-On Introduction to Hacking: https://amzn.to/31GN7iX
The Hacker Playbook 3: https://amzn.to/34XkIY2
Hacking: The Art of Exploitation: https://amzn.to/2VchDyL
The Web Application Hacker's Handbook: https://amzn.to/30Fj21S
Real-World Bug Hunting: A Field Guide to Web Hacking: https://amzn.to/2V9srOe
Social Engineering: The Science of Human Hacking: https://amzn.to/31HAmVx
Linux Basics for Hackers: https://amzn.to/34WvcXP
Python Crash Course, 2nd Edition: https://amzn.to/30gINu0
Violent Python: https://amzn.to/2QoGoJn
Black Hat Python: https://amzn.to/2V9GpQk
My Build:
lg 32gk850g-b 32" Gaming Monitor:https://amzn.to/30C0qzV
darkFlash Phantom Black ATX Mid-Tower Case: https://amzn.to/30d1UW1
EVGA 2080TI: https://amzn.to/30d2lj7
MSI Z390 MotherBoard: https://amzn.to/30eu5TL
Intel 9700K: https://amzn.to/2M7hM2p
G.SKILL 32GB DDR4 RAM: https://amzn.to/2M638Zb
Razer Nommo Chroma Speakers: https://amzn.to/30bWjiK
Razer BlackWidow Chroma Keyboard: https://amzn.to/2V7A0or
CORSAIR Pro RBG Gaming Mouse: https://amzn.to/30hvg4P
Sennheiser RS 175 RF Wireless Headphones: https://amzn.to/31MOgpu
My Recording Equipment:
Panasonic G85 4K Camera: https://amzn.to/2Mk9vsf
Logitech C922x Pro Webcam: https://amzn.to/2LIRxAp
Aston Origin Microphone: https://amzn.to/2LFtNNE
Rode VideoMicro: https://amzn.to/309yLKH
Mackie PROFX8V2 Mixer: https://amzn.to/31HKOMB
Elgato Cam Link 4K: https://amzn.to/2QlicYx
Elgate Stream Deck: https://amzn.to/2OlchA5
*We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.
Video Information
Views
295.1K
Likes
7.6K
Duration
05:16:30
Published
Aug 4, 2023
User Reviews
4.7
(59) Related Trending Topics
LIVE TRENDSRelated trending topics. Click any trend to explore more videos.
No specific trending topics match this video yet.
Explore All Trends