Главная
Study mode:
on
1
Presentation Overview
2
About Karl
3
Pinball Repair
4
Hacker Jeopardy
5
Overview
6
ADFS
7
Identity Provider
8
Federation
9
Federated Services
10
Attack Walkthroughs
11
Authentication Bypass Bug
12
Get Federation Info
13
Login Prompt
14
Office 365
15
Managed Federation
16
Automation
17
Multiple Domains
18
Claim Domain
19
Fox News
20
Test Environment
21
Domain
22
Getting Office 365
23
Claiming the Domain
24
Enabling Federation
25
Skype Support
26
PowerShell Modules
27
AD PowerShell Module
28
User Enumeration
29
User Validation
30
PowerShell Setup
31
Screenshot
32
Demo
33
Whats Next
34
Dictionary Attacks Against Federated Accounts
35
AD Tenant Demo
36
pivoting to the internal network
37
singlefactor VPN
38
malicious OneDrive documents
39
malicious SharePoint
40
malicious Outlook rule
41
attack mitigations
42
limiting federation to trusted domains
43
special thanks
44
questions
Description:
Explore attacking ADFS endpoints using PowerShell in this comprehensive conference talk from Derbycon 2016. Dive into topics like identity providers, federation, and federated services. Learn about authentication bypass bugs, federation info retrieval, and login prompt manipulation. Examine Office 365 integration, managed federation, and automation techniques. Discover methods for handling multiple domains and claiming domains. Set up a test environment and explore PowerShell modules for AD and user enumeration. Witness live demonstrations and discuss future attack vectors, including dictionary attacks against federated accounts. Investigate pivoting to internal networks, exploiting single-factor VPNs, and leveraging malicious OneDrive documents, SharePoint, and Outlook rules. Conclude with attack mitigation strategies and a Q&A session.

Attacking ADFS Endpoints with PowerShell

Add to list
#Conference Talks #Information Security (InfoSec) #Cybersecurity #Ethical Hacking #Computer Science #Information Technology #PowerShell #Dictionary Attacks #Authentication Bypass
1 of 44

Presentation Overview