Главная
Study mode:
on
1
Intro
2
@davidpmcguire
3
tl;dr
4
Pentesting
5
Red Team Operations
6
Cyber Kill-Chain :
7
Bridging the Gap
8
Nothing New?
9
Landing on the Beachhead
10
Old School: User Hunting
11
New(est) School: PowerShell
12
Windows Domain Trusts 101
13
Old School: nltest
14
Old School: dsquery/dsget
15
New School: Trusts and PowerShell
16
New(est) School: PowerView
17
Escalation and Pivoting
18
Moving Beyond the Beachhead
19
Old School: Escalation
20
Old School: Tokens
21
New School: Escalation
22
New School: Token Manipulation
23
New School: Mimikatz FTW
24
Keeping the Door Open
25
New School: Local Persistence
26
The Golden Ticket
27
A LOOONNNGGG Time
28
Files on Files
29
Old School: Finding Shares
30
Old School: Finding Files
31
New School: Finding Shares
32
New School: Finding Files
33
New School: Targeted Trojanation
34
Demo
35
Recap
36
Questions?
Description:
Explore advanced red teaming techniques in this DerbyCon 4 conference talk. Delve into the evolution of penetration testing and cyber kill-chain methodologies, comparing traditional approaches with modern PowerShell-based tactics. Learn about Windows domain trust exploitation, user hunting, and escalation strategies. Discover techniques for maintaining persistence, including the infamous Golden Ticket attack. Gain insights on efficient file and share discovery methods, and witness a live demonstration of targeted trojanation. Enhance your red team operations with a blend of time-tested and cutting-edge tactics presented by David McGuire and Will Schroeder.

Passing the Torch - Old School Red Teaming - New School Tactics

Add to list
#Conference Talks #Information Security (InfoSec) #Cybersecurity #Computer Science #Information Technology #PowerShell #Penetration Testing #Cyber Kill Chain #Mimikatz
1 of 36

Intro