Back to Courses View Course

Active Directory Hacking

Active Directory (AD) is a critical component in many enterprise networks, serving as the backbone for identity management, authentication, and authorization. However, due to its central role, it is also a prime target for attackers. In this comprehensive course on Active Directory Hacking, you will delve into the techniques and tools used by attackers to compromise AD environments. The course covers everything from the basics of Active Directory architecture to advanced exploitation techniques, including privilege escalation, lateral movement, and persistence.

General

Fundamentals

Parrot CTFs academy course image

Course Preview

Active Directory (AD) is a directory service developed by Microsoft for Windows domain networks. It is used to manage and organize resources in a networked environment, such as users, computers, printers, and other network objects. Here’s an overview of its key components and functionalities:

Key Components

  1. Domain: A logical grouping of network objects that share the same AD database. It provides centralized management and security. Each domain has its own set of policies, permissions, and authentication mechanisms.

  2. Domain Controller (DC): A server that holds a copy of the AD database and provides authentication and authorization services. Domain Controllers manage the domain and replicate data across other DCs within the same domain.

  3. Organizational Units (OUs): Containers within a domain that help organize and manage resources. OUs can be nested and used to delegate administrative control and apply Group Policies.

  4. Active Directory Users and Computers (ADUC): A Microsoft Management Console (MMC) snap-in used to manage users, groups, computers, and other objects within AD.

  5. Group Policy: A feature that allows administrators to define and control user and computer settings across the domain. Group Policies can enforce security settings, software installations, and other configurations.

  6. Global Catalog: A distributed data repository that contains a partial replica of all objects in the forest. It helps in searching for objects across domains and provides efficient authentication.

  7. Schema: Defines the types of objects and attributes that can be stored in AD. The schema is shared across all domains in a forest.

  8. Forest: A collection of one or more domains that share a common schema and global catalog. It represents the top-level boundary of an AD implementation.

Functionalities

  1. Authentication and Authorization: AD provides mechanisms for verifying user credentials and granting access to resources based on defined permissions.

  2. Centralized Management: Administrators can manage user accounts, computers, and security policies from a central location.

  3. Single Sign-On (SSO): Users can access multiple resources and services within the domain with a single set of credentials.

  4. Scalability and Replication: AD can scale to support large organizations and replicate data across multiple DCs to ensure high availability and consistency.

  5. Delegation of Control: Administrators can delegate specific administrative tasks to other users or groups, allowing for granular control and security.

Use Cases

  • User and Group Management: Creating and managing user accounts, groups, and permissions.
  • Policy Enforcement: Applying security and configuration policies across the organization.
  • Resource Access: Controlling access to network resources such as shared files and printers.

Active Directory is a crucial component for managing large-scale network environments, providing both security and administrative control.

Course Syllabus