Hacking Active Directory for Beginners (over 5 hours of content!)

Practical Ethical Hacking Course: https://academy.tcm-sec.com/p/practical-ethical-hacking-the-complete-course Live Training: https://certifications.tcm-sec.com/live-training/ PJPT: https://certifications.tcm-sec.com/pjpt/ PNPT: https://certifications.tcm-sec.com/pnpt/ 0:00 - Introduction 04:02 - Installing VMWare / VirtualBox 10:17 - Installing Linux 15:50 - Configuring VirtualBox 19:06 - Installing PMK 21:44 - Active Directory Overview 26:58 - Physical Active Directory Components 32:45 - Logical Active Directory Components 40:12 - AD Lab Overview 43:13 - Cloud Lab Alternative 45:17 - Downloading the Necessary ISOs 48:06 - Setting up the Domain Controller 1:01:45 - Setting Up the User Machines 1:09:38 - Setting Up Users, Groups, and Policies 1:25:23 - Joining Our Machines to the Domain 1:34:11 - Initial AD Attacks Overview 1:38:07 - LLMNR Poisoning Overview 1:45:34 - Capturing NTLMv2 Hashes with Responder 1:50:20 - Password Cracking with Hashcat 2:01:52 - LLMNR Poisoning Defenses 2:04:41 - SMB Relay Attacks Overview 2:10:03 - Quick Lab Update 2:11:02 - Discovering Hosts with SMB Signing Disabled 2:14:40 - SMB Relay Attacks Part 1 2:19:34 - SMB Relay Attacks Part 2 2:23:40 - SMB Relay Attack Defenses 2:26:15 - Gaining Shell Access 2:34:02 - IPv6 Attacks Overview 2:38:03 - Installing mitm6 2:39:20 - Setting up LDAPS 2:41:43 - IPv6 DNS Attacks 2:49:27 - IPv6 Attack Defenses 2:52:27 - Passback Attacks 2:57:43 - Other Attack Vectors and Strategies 3:06:27 - Post Compromise Enumeration Intro 3:08:29 - PowerView Overview 3:10:41 - Domain Enumeration with PowerView 3:26:00 - Bloodhound Overview 3:29:33 - Grabbing Data with Invoke Bloodhound 3:32:43 - Using Bloodhound to Review Domain Data 3:40:19 - Post-Compromise Attacks Intro 3:41:21 - Pass the Hash and Password Overview 3:44:25 - Installing crackmapexec 3:45:04 - Pass the Password Attacks 3:52:11 - Dumping Hashes with secretsdump 3:55:22 - Cracking NTLM Hashes with Hashcat 3:58:29 - Pass the Hash Attacks 4:04:54 - Pass Attack Mitigations 4:07:36 - Token Impersonation Overview 4:11:25 - Token Impersonation with Incognito 4:18:28 - Token Impersonation Mitigation 4:21:11 - Kerberoasting Overview 4:26:22 - Kerberoasting Walkthrough 4:30:14 - Kerberoasting Defenses 4:31:23 - GPP Password Attacks Overview 4:34:48 - Abusing GPP Part 1 4:43:34 - Abusing GPP Part 2 4:47:45 - URL File Attacks 4:53:22 - Mimikatz Overview 4:58:57 - Credential Dumping with Mimikatz 5:08:19 - Golden Ticket Attacks 5:15:36 - Conclusion Pentests & Security Consulting: https://tcm-sec.com Get Trained: https://academy.tcm-sec.com Get Certified: https://certifications.tcm-sec.com Merch: https://merch.tcm-sec.com Sponsorship Inquiries: [email protected] 📱Social Media📱 ___________________________________________ Twitter: https://twitter.com/thecybermentor Twitch: https://www.twitch.tv/thecybermentor Instagram: https://instagram.com/thecybermentor LinkedIn: https://www.linkedin.com/in/heathadams TikTok: https://tiktok.com/@thecybermentor Discord: https://discord.gg/tcm 💸Donate💸 ___________________________________________ Like the channel? Please consider supporting me on Patreon: https://www.patreon.com/thecybermentor Support the stream (one-time): https://streamlabs.com/thecybermentor Hacker Books: Penetration Testing: A Hands-On Introduction to Hacking: https://amzn.to/31GN7iX The Hacker Playbook 3: https://amzn.to/34XkIY2 Hacking: The Art of Exploitation: https://amzn.to/2VchDyL The Web Application Hacker's Handbook: https://amzn.to/30Fj21S Real-World Bug Hunting: A Field Guide to Web Hacking: https://amzn.to/2V9srOe Social Engineering: The Science of Human Hacking: https://amzn.to/31HAmVx Linux Basics for Hackers: https://amzn.to/34WvcXP Python Crash Course, 2nd Edition: https://amzn.to/30gINu0 Violent Python: https://amzn.to/2QoGoJn Black Hat Python: https://amzn.to/2V9GpQk My Build: lg 32gk850g-b 32" Gaming Monitor:https://amzn.to/30C0qzV darkFlash Phantom Black ATX Mid-Tower Case: https://amzn.to/30d1UW1 EVGA 2080TI: https://amzn.to/30d2lj7 MSI Z390 MotherBoard: https://amzn.to/30eu5TL Intel 9700K: https://amzn.to/2M7hM2p G.SKILL 32GB DDR4 RAM: https://amzn.to/2M638Zb Razer Nommo Chroma Speakers: https://amzn.to/30bWjiK Razer BlackWidow Chroma Keyboard: https://amzn.to/2V7A0or CORSAIR Pro RBG Gaming Mouse: https://amzn.to/30hvg4P Sennheiser RS 175 RF Wireless Headphones: https://amzn.to/31MOgpu My Recording Equipment: Panasonic G85 4K Camera: https://amzn.to/2Mk9vsf Logitech C922x Pro Webcam: https://amzn.to/2LIRxAp Aston Origin Microphone: https://amzn.to/2LFtNNE Rode VideoMicro: https://amzn.to/309yLKH Mackie PROFX8V2 Mixer: https://amzn.to/31HKOMB Elgato Cam Link 4K: https://amzn.to/2QlicYx Elgate Stream Deck: https://amzn.to/2OlchA5 *We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites.