Windows Active Directory
Windows Active Directory (AD) is a directory service developed by Microsoft for managing users, computers, and resources in a network. It provides centralized authentication, authorization, and administration, enabling organizations to control access to data and applications securely. AD uses a hierarchical structure with domains, organizational units (OUs), and group policies to enforce security settings. It supports Kerberos authentication, LDAP, and Group Policy Management, making it essential for enterprise IT environments.
-
Windows active directory - (Basics)
Windows Active Directory (AD) is a directory service developed by Microsoft for managing users, computers, and resources in a network. It provides centralized authentication, authorization, and admini...
-
Kerberos
Kerberos is a network authentication protocol designed to provide secure and encrypted authentication between users and services. It uses a ticket-based system to verify identities without transmittin...
-
Active Directory Enumeration
Active Directory enumeration is the process of gathering information about users, groups, computers, and permissions within an organization's Active Directory (AD) environment. Attackers or security p...
-
LDAP (Lightweight Directory Access Protocol)
LDAP (Lightweight Directory Access Protocol) is an open, industry-standard protocol used to access and manage directory services over a network. It enables authentication, authorization, and informati...
-
ADExplorer
ADExplorer is a free tool from Microsoft’s Sysinternals suite used for exploring and analyzing Active Directory (AD) structures. It provides a detailed, real-time view of AD objects, attributes, and p...
-
Kerberos - L1
Kerberos is a network authentication protocol designed to provide secure and encrypted authentication between users and services. It uses a ticket-based system to verify identities without transmittin...
-
Pass-the-Hash(PtH)
Pass-the-Hash (PtH) is a cyberattack where an attacker captures hashed passwords and uses them to authenticate without cracking them. It exploits weak authentication mechanisms in Windows systems, all...
-
DCSync Attack
A DCSync attack is a credential theft technique where an attacker impersonates a domain controller to request password hashes from Active Directory. Using tools like Mimikatz, the attacker abuses repl...
-
Golden Ticket Attack
A Golden Ticket attack is a Kerberos-based cyberattack where an attacker forges authentication tickets using a stolen NTLM hash of the KRBTGT account in Active Directory. This allows them to create va...
Hacking Windows is often daunting. Grasp the fundamentals of core Windows concepts.
A learning pathway is made up of modules, and a module is made of bite-sized rooms (think of a room like a mini security lab).
