Windows Pentest Tutorial (Active Directory Game Over!)

preview_player
Показать описание

Disclaimer: I was NOT paid for this interview. I wanted to make this video because it affects many of you watching and is a major topic on the OSCP exam. However, OffSec did give me access to Learn One for one year so I could see the course content. This has helped me prepare for the interview. Hopefully I'll be able to make more content covering what is in the PEN 200 course in future :)

// GitHub Code //

// Documentation //

// Offsec //

// Remi's SOCIAL //

// David's SOCIAL //

// MENU //
00:00 - Coming up
01:31 - Disclaimer
01:57 - Remi Solberg introduction & background
03:37 - Jump to a timestamp (check in description below)
03:57 - Simulated full-scale penetration test demo // Hacking Windows
05:12 - OffSec Learn One discount!
06:22 - Penetration test demo
09:38 - Documentation & enumeration // Prepping for penetration test
23:25 - Penetration test demo // Accessing users
30:10 - Privilege escalation
37:44 - Using ICACLS (Integrity Access Control Access List)
43:59 - Privilege escalation (continued)
52:14 - Getting around obstacles // Social engineering
53:23 - Privilege escalation (continued)
57:19 - Stealing credentials
59:11 - Using Mimikatz tool // Kerberos and NTLM Authentication (theory)
01:07:33 - Mimikatz tool demo
01:06:05 - Penetration test demo (continued) // Exposing passwords & credentials
01:23:25 - What a malicious hacker would do
01:25:55 - The "Golden Ticket" // How to forge a ticket
01:45:07 - Demo summary & tips
01:48:05 - Conclusion

// MY STUFF //

// SPONSORS //

oscp
pen-200
offsec
offensive sercurity
pentest
pentester
hack
hacker
hacking
ethical hacking
ethical hacker course
ethical hacker

Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel!

Disclaimer: This video is for educational purposes only.

#hacker #pentester #oscp
  1. David Bombal
  2. windows
  3. windows hack
  4. microsoft
  5. microsoft windows
  6. domain hack
Рекомендации по теме
Windows Pentest Tutorial 1:49:45

Windows Pentest Tutorial (Active Directory Game Over!)

Real World Windows 1:41:53

Real World Windows Pentest Tutorial (demos of Top 5 Active Directory hacks)

Hacking Active Directory 5:16:30

Hacking Active Directory for Beginners (over 5 hours of content!)

Windows Active Directory 1:11:10

Windows Active Directory Penetration Testing | CTF Walkthrough

Active Directory Enumeration 0:30:27

Active Directory Enumeration Walkthrough

OSCP Practice Lab: 1:57:02

OSCP Practice Lab: Active Directory Attack Path #1

4 Active Directory 0:10:23

4 Active Directory Attacks to become Domain Admin!

Learn Active Directory 0:22:05

Learn Active Directory Kerberoasting

How to Build 0:48:07

How to Build an Active Directory Hacking Lab

Ethical Hacking Lab: 0:20:55

Ethical Hacking Lab: Setting Up Vulnerable Active Directory on Windows Server 2019 | vulnerable-AD

Compromising WINDOWS Hosts 0:18:14

Compromising WINDOWS Hosts w/ Impacket (Active Directory #09)

Hacking Windows Domain 0:18:23

Hacking Windows Domain Active Directory Series - Episode 01

[FR] HackTheBox - 0:37:53

[FR] HackTheBox - Cascade - MEDIUM (Windows + LDAP + Reverse + AD Recycle BIN)

[FR] TryHackMe - 0:12:08

[FR] TryHackMe - Attacktive Directory - MEDIUM (Active Directory + secretsdump + Pass The Hash)

Pentesting Microsoft SQL 0:37:00

Pentesting Microsoft SQL Server In Windows Active Directory - Cyberseclabs Mount

Active Directory Penetration 0:24:17

Active Directory Penetration Testing on Windows Server - Part 2

How to Hack 0:04:43

How to Hack Active Directory Domain Controller

Windows Active Directory 0:38:34

Windows Active Directory Drivers | CTF Walkthrough

Simple Penetration Testing 0:15:25

Simple Penetration Testing Tutorial for Beginners!

Windows Active Directory 0:35:26

Windows Active Directory Penetration Testing | P26 | CTF Walkthrough

you NEED to 0:27:39

you NEED to learn Windows RIGHT NOW!!

HackTheBox - Active 0:30:42

HackTheBox - Active

What is Windows 0:00:58

What is Windows Active Directory? | #windows #windowssecurity #cybersecurity

Active Directory Attacks 1:49:46

Active Directory Attacks | AD Enumeration and Exploitation | Hacking Active Directory

Комментарии
Автор

please get this guy back for more tutorials, really great video

reluchan
Автор

For me as a sysadmin this video has shown many things that I will give attention even more in the future and double check and change. Thanks so so much for that awesome and free content.

kevinneufeld
Автор

David you always coming with intersting guests and tech explanation .thanks

godadawgashaw
Автор

A Couple of retired machines on Hack The Box are good active directory practice machines with good walk through's if you get stuck 'Hathor' and 'Sekhmet'.

Saint_Staunch
Автор

This vid is a gem, and Remi is a breath of fresh air. Great explains along the way, but not too much to put off viewers with reasonable knowledge in some areas. More id definitely required from you guys if possible. Never change Remi, people who work with you must love it!!

Arcadiality
Автор

wow this is absolutely jam packed for a youtube video. Killer video David, I'm blown away by the depth of knowledge your guests have.

deltaSoT
Автор

Nice work Dr Bombal - great content as always, we appreciate your service

personalPickle
Автор

Very indepth and intriguing video. I'd like to see Remy provide more explanations to OffSec practices and again, with he explanations.

johnnieparker
Автор

Right.

But seriously, good content and I appreciate taking the time to make this and posting it publicly too.

Lleanlleawrg
Автор

I watched this video and immediately went and checked like 20 files on various systems. LOL. Good wake-up for anyone that might not be thinking about these attacks.

VacentViscera
Автор

best video to overview what is a pentest and how they approach it thank you david for this king of content on youtube we are very happy to see you again with the videos like this :)))

mohammadalihanfi
Автор

Thanks David for a great channel. From Cyber security, hacking, pen testing, networking … all in one. Also thanks to Remi for the excellent demo

healthvative
Автор

Really great to see this all done. Thanks for the video 🎉 I’m so used to seeing this done with bloodhound etc. it was really refreshing seeing it done this way.

RmDGaming
Автор

High valuable content. Looking forward for more stuff like this. Thank you 👍

elmeromero
Автор

This vid is brilliant, Remy explained things so well and David you asked the questions popping right into my mind. Great job! Thanks!

muyangli
Автор

Greater job have been achieved inside this content. David, thanks again for contribution. You always try to provide the best content for your audience. Thanks

ibrahimiam
Автор

David, you are doing fascinating content, you help me drastically to gain my knowledge in this new sphere for me

ДмитрийКузнецов-яд
Автор

u always have good people as guests your good too Bombal enjoy seeing and learning from good people the best Knowledge is free God bless😇

KryptoWooks
Автор

Thank you so much this is the video I have always been wanted the full pentest from initial access to lateral movement, escalation and persistence. Pretty much the whole package. Great stuff.

BarryBazzawillWilliams
Автор

So awesome. Asked about this on your Managed vs Unmanaged switch YouTube Short. Thanks David.

owenk