Description
Modern day APT’s (Advanced Persistent Threat) are relentlessly developing new Opsec and tools that allow them to successfully compromise hardened targets for a variety of motivations. To avoid detection against organizations with mature security programs, you need to ensure you are using the latest Opsec and techniques. Students must prove their ability to identify impactful misconfigurations and execute advanced, organized attacks in a controlled and focused manner. How strong is your APT arsenal?
This self-paced online advanced pentest training lab requires students apply new advanced persistent threat Opsec and techniques against a hardened heterogeneous network. Students are immersed in a Active Directory corporate environment, up-to-date and patched operating systems, modern defenses, with active and passive host-based alerting malicious activities. Simulated corporate users performing routine logins and mounting share drives generate real-world network activity essential to completing the lab.
What will you learn?
Evading endpoint protections
Passing the Hash techniques
Active Directory Enumeration and Escalation
Advanced lateral movement in a secure environment
Abusing Domain Trusts
NTLM Relaying
Kerberos Delegation Attacks
Privilege Escalation
Web Application Attacks
Escape from restricted environments on Linux and Windows
Breaking out of the beachhead
Achieve objectives via data mining and exfiltration
Tool expertise with Impacket, Rubeus, BloodHound, Responder, NTLM Relayx, and others!