Course Overview
- Active Directory architecture and authentication mechanisms
- Techniques for enumeration, password attacks, and lateral movement
- Exploiting misconfigurations in AD, ADCS, group policies, and permissions
- Advanced techniques like Kerberos attacks, domain trust exploitation, and persistence mechanisms
- Real-world case studies on exploiting Active Directory vulnerabilities such as ZeroLogon, PrintNightmare, and more
Who Should take This Course
- Red teamers and penetration testers aiming to specialize in Windows and Active Directory exploitation
- Security professionals and system administrators looking to understand and secure AD environments
- IT professionals and enthusiasts aspiring to enter the field of red teaming or advanced penetration testing
- Students aspiring to build a career in penetration testing and red teaming
Course Curriculum
Windows Red Teaming Course
16 Exercises • 133 Learning Materials
Module 1: Introduction
Introduction
Disclaimer
Tips and Tricks
Module 2: Introduction to Active Directory
Introduction
Intro to Red Teaming
Active Directory Architecture
AD Authentication Mechanism
PowerShell
Note taking
Summary
Technical References
Quiz
Conclusion
Module 3: Lab Setup
Introduction
Active Directory Lab Setup
Summary
Technical References
Quiz
Post Module Activity
Conclusion
Module 4: AD Enumeration
Introduction
AD Enumeration
Bloodhound
Summary
Technical References
Quiz
Post Module Activity
Conclusion
Module 5: Password Attacks
Introduction
Understanding Password Attacks
Password in User Description
Password Spraying
Sensitive Information in Network Shares
Summary
Technical References
Quiz
Post Module Activity
Conclusion
Module 6: Relay Attacks
Introduction
Relay Attacks
LLMNR Poisioning
IPv6 DNS Takeover
WebDAV
Summary
Technical References
Quiz
Post Module Activity
Conclusion
Module 7: Misconfigured Permissions
Introduction
Understanding Permissions
Exploiting Permissions
Summary
Technical References
Quiz
Post Module Activity
Conclusion
Module 8: Group Policies
Introduction
Understanding Group Policies
Abusing Group Policies
Group Policy Preference Passwords
Summary
Technical References
Quiz
Post Module Activity
Conclusion
Module 9: Lateral Movement
Introduction
Local Admin Password Spray
Lateral Movement Techniques
Pass-the-hash & Over-pass-the-hash
Summary
Technical References
Quiz
Post Module Activity
Conclusion
Module 10: Credential Dumping
Introduction
Credential Dumping
Domain Cached Credentials (DCC)
Summary
Technical References
Quiz
Post Module Activity
Conclusion
Module 11: Kerberos Attacks
Introduction
Kerberos Attacks
Kerberoasting & ASREP Roast
Understanding Kerberos Delegations
Resource-Based Constrained Delegation
Shadow Credentials
Summary
Technical References
Quiz
Post Module Activity
Conclusion
Module 12: AD Certificates
Introduction
Active Directory Certificate Services (ADCS)
Misconfigured Certificate Templates
Misconfigured Certificate Authority
Summary
Technical References
Quiz
Post Module Activity
Conclusion
Module 13: MSSQL Trust Links
Introduction
Understanding MSSQL Trust Links
Exploiting MSSQL Trust Links
Summary
Technical References
Quiz
Post Module Activity
Conclusion
Module 14: CVEs
Introduction
Active Directory CVEs
MS14-068 Checksum Validation
ZeroLogon
PrintNightmare
samAccountName Spoofing
Summary
Technical References
Quiz
Post Module Activity
Conclusion
Module 15: Post Exploitation
Introduction
Credential Dumping
Password Analysis
Summary
Technical References
Quiz
Post Module Activity
Conclusion
Module 16: Domain Persistence
Introduction
Domain Persistence
Golden Ticket
Silver Ticket
Skeleton Key
Summary
Technical References
Quiz
Post Module Activity
Conclusion
Module 17: Domain Trusts
Introduction
Understanding Domain Trusts
Exploiting Domain Trusts
Summary
Technical References
Quiz
Post Module Activity
Conclusion
Module18: Conclusion
Conclusion
Bonus: Discount on other courses
Bonus: Discount on other courses
Course Instructor
Shashi Kant Prasad
Senior Security Consultant
Shashi Kant Prasad is an adept red teamer at Redfox Security. Shashi possesses a broad range of knowledge and expertise in penetration testing across various domains, including Cloud, Web Apps, Hardware, DevOps, and Red Teaming. He has also delivered training at various security conferences, sharing his expertise with peers and contributing to the advancement of cybersecurity knowledge within the community.
Key Takeaways
- Understand the architecture of Active Directory and its key components
- Perform enumeration and identify misconfigurations in Windows environments
- Exploit vulnerabilities in group policies, ADCS , and domain trusts
- Gain hands-on experience with exploiting real-world Active Directory vulnerabilities
- Develop strategies for maintaining persistence in compromised environments
- Apply practical knowledge in real world scenarios
System Requirements
- Operating System: Windows, Linux, or macOS with virtualization support enabled.
- Memory: A minimum of 16 GB RAM.
- Storage: At least 256 GB of free disk space.
FAQs
While some prior knowledge of Windows environments is recommended, this course starts with foundational concepts and builds up to advanced topics, making it beginner-friendly.
Yes! Each topic is paired with practical exercises in a lab environment to reinforce your learning.
The course is self-paced. With consistent effort, you can complete it in 6–8 weeks, depending on your prior experience.
Absolutely! The course includes exploitation of real-world Active Directory vulnerabilities and misconfigurations encountered in professional red teaming engagements.
Yes, this course is designed to provide the technical skills and methodologies needed for red teaming, making it an excellent step toward a professional role.
Yes, participants will receive a certificate of completion after successfully completing the course.
Featured Courses
Ready to Master the Art of Pentesting?
Affordable Price
Unlock your potential with affordable upskilling! Our unbeatable course prices are your chance to level up without breaking the bank. Don't wait to enhance your skills – join us today and take the first step towards a brighter future!
Lifetime Access
Acquire lifetime access to our resources when you buy our courses. With recorded lectures, post-module activities, and walk-through labs, perfecting your understanding of the subject matter like a pro is just a click away. Gain knowledge today and unlock a lifetime of learning.
Certificate of Completion
Upon completing our course, you'll receive a certificate of completion to showcase your new skills. Add it to your resume or LinkedIn profile to stand out to potential employers. Let your accomplishments speak for themselves and take your career to the next level!
Hands-On Experience
Get hands-on experience with real-world scenarios and challenges, giving you practical skills that you can apply immediately in your career.
Expert Instructors
Learn from industry experts with years of experience in pentesting, who are passionate about sharing their knowledge and helping you succeed.
Flexible Learning
Whether you're a beginner or an experienced professional, our courses are designed to meet you where you are and help you reach your goals.
Get in Touch
Have a question, need assistance, or want to collaborate? We’re here to help!
Whether you're looking for cutting-edge cybersecurity solutions or expert training or want to learn more about our services, contact us today.
By clicking on Continue, I accept the Terms & Conditions,
Privacy Policy & Refund Policy