Active Directory Security - Defense and Response

Thursday
 
28
 
November
10:15 am
 - 
2:30 pm
Topic
Incident Management / Response
Agenda
Sign in to add this session to your agenda
Add to My AgendaAdded to My Agenda
Location
Workshop Room 4
Theme
Cyber Security Operations

Speakers

Anurag Khanna

Anurag Khanna

Sr Manager - Incident Response
CrowdStrike

Synopsis

This workshop is an intermediate level introduction to Kerberos in Active Directory environments. We will go into details of how Kerberos works at a protocol level, how encryption happens and how by design there are parts of the protocol that can be exploited. We will then work through some of the common attacks that happen against Kerberos in AD environments like the Golden Ticket, Silver Ticket, Kerberoasting etc and understand how they can be detected and responded to.

Topics

  • Kerberos in AD environment
  • Roasting attacks in Active Directory
  • Forging attacks in Active Directory

Prerequisites

Virtualisation software installed on a laptop - please access this link for requirements

ADSEC Workshop Setup - Incident Response, Active Directory and Cloud Security 

Back to Workshops

Acknowledgement of Country

We acknowledge the traditional owners and custodians of country throughout Australia and acknowledge their continuing connection to land, waters and community. We pay our respects to the people, the cultures and the elders past, present and emerging.

Acknowledgement of Country