Оцените презентацию от 1 до 5 баллов!
Тип файла:
ppt / pptx (powerpoint)
Всего слайдов:
30 слайдов
Для класса:
1,2,3,4,5,6,7,8,9,10,11
Размер файла:
6.52 MB
Просмотров:
58
Скачиваний:
0
Автор:
неизвестен
Слайды и текст к этой презентации:
№1 слайд![](/documents_6/f1a790486c9c513ff9924cff1c1571dc/img0.jpg)
№2 слайд![WHOAMI Penetration Tester](/documents_6/f1a790486c9c513ff9924cff1c1571dc/img1.jpg)
Содержание слайда: $WHOAMI
Penetration Tester @ SynerComm
Bug Bounty Hunter on HackerOne
Python enthusiast
№3 слайд![Routes to DA and how to](/documents_6/f1a790486c9c513ff9924cff1c1571dc/img2.jpg)
Содержание слайда: 5 Routes to DA
… and how to protect your administrators
№4 слайд![Permissive Global Group](/documents_6/f1a790486c9c513ff9924cff1c1571dc/img3.jpg)
Содержание слайда: Permissive Global Group Access + MimiKatz
Solution: Apply the principle of least privilege
№5 слайд![Permissive Global Group](/documents_6/f1a790486c9c513ff9924cff1c1571dc/img4.jpg)
Содержание слайда: Permissive Global Group Access + MimiKatz
№6 слайд![Permissive Global Group](/documents_6/f1a790486c9c513ff9924cff1c1571dc/img5.jpg)
Содержание слайда: Permissive Global Group Access + MimiKatz
“A local admin can extract from memory the cleartext password of any authenticated user”
№7 слайд![BloodHound](/documents_6/f1a790486c9c513ff9924cff1c1571dc/img6.jpg)
Содержание слайда: BloodHound
№8 слайд![](/documents_6/f1a790486c9c513ff9924cff1c1571dc/img7.jpg)
№9 слайд![Permissive Global Group](/documents_6/f1a790486c9c513ff9924cff1c1571dc/img8.jpg)
Содержание слайда: Permissive Global Group Access + MimiKatz
“A local admin can extract from memory the cleartext password of any authenticated user.”
№10 слайд![Permissive Global Group](/documents_6/f1a790486c9c513ff9924cff1c1571dc/img9.jpg)
Содержание слайда: Permissive Global Group Access + MimiKatz
“A local admin can extract from memory the cleartext password of any authenticated user.”
№11 слайд![Permissive Global Group](/documents_6/f1a790486c9c513ff9924cff1c1571dc/img10.jpg)
Содержание слайда: Permissive Global Group Access + MimiKatz
“A local admin can extract from memory the cleartext password of any authenticated user.”
№12 слайд![LLMNR amp NBT-NS Poisoning](/documents_6/f1a790486c9c513ff9924cff1c1571dc/img11.jpg)
Содержание слайда: LLMNR & NBT-NS Poisoning
Solution: Turn them off.
№13 слайд![LLMNR amp NBT-NS Poisoning](/documents_6/f1a790486c9c513ff9924cff1c1571dc/img12.jpg)
Содержание слайда: LLMNR & NBT-NS Poisoning
“Turn off LLMNR.
Turn off NBT-NS.
Monitor for these requests.”
№14 слайд![LLMNR amp NBT-NS Poisoning](/documents_6/f1a790486c9c513ff9924cff1c1571dc/img13.jpg)
Содержание слайда: LLMNR & NBT-NS Poisoning
“Turn off LLMNR.
Turn off NBT-NS.
Monitor for these requests.”
№15 слайд![LLMNR amp NBT-NS Poisoning](/documents_6/f1a790486c9c513ff9924cff1c1571dc/img14.jpg)
Содержание слайда: LLMNR & NBT-NS Poisoning
“Turn off LLMNR.
Turn off NBT-NS.
Monitor for these requests.”
№16 слайд![LLMNR amp NBT-NS Poisoning](/documents_6/f1a790486c9c513ff9924cff1c1571dc/img15.jpg)
Содержание слайда: LLMNR & NBT-NS Poisoning
“Turn off LLMNR.
Turn off NBT-NS.
Monitor for these requests.”
№17 слайд![LLMNR amp NBT-NS Poisoning](/documents_6/f1a790486c9c513ff9924cff1c1571dc/img16.jpg)
Содержание слайда: LLMNR & NBT-NS Poisoning
“Turn on SMB Signing”
№18 слайд![SYSVOL Passwords leaked aes](/documents_6/f1a790486c9c513ff9924cff1c1571dc/img17.jpg)
Содержание слайда: SYSVOL Passwords + leaked aes keys
Solution: Delete the XML files. Just delete them.
№19 слайд![SYSVOL Passwords Leaked AES](/documents_6/f1a790486c9c513ff9924cff1c1571dc/img18.jpg)
Содержание слайда: SYSVOL Passwords + Leaked AES Keys
“Apply the patch, delete the XML files, and don’t put cleartext passwords in scripts.”
№20 слайд![SYSVOL Passwords Leaked AES](/documents_6/f1a790486c9c513ff9924cff1c1571dc/img19.jpg)
Содержание слайда: SYSVOL Passwords + Leaked AES Keys
“Apply the patch, delete the XML files, and don’t put cleartext passwords in scripts.”
№21 слайд![SYSVOL Passwords Leaked AES](/documents_6/f1a790486c9c513ff9924cff1c1571dc/img20.jpg)
Содержание слайда: SYSVOL Passwords + Leaked AES Keys
“Apply the patch, delete the XML files, and don’t put cleartext passwords in scripts.”
№22 слайд![SYSVOL Passwords Leaked AES](/documents_6/f1a790486c9c513ff9924cff1c1571dc/img21.jpg)
Содержание слайда: SYSVOL Passwords + Leaked AES Keys
“Apply the patch, delete the XML files, and don’t put cleartext passwords in scripts.”
№23 слайд![Kerberoasting Solution Long](/documents_6/f1a790486c9c513ff9924cff1c1571dc/img22.jpg)
Содержание слайда: Kerberoasting
Solution: Long Service Account Passwords
№24 слайд![KerberRoasting Domain](/documents_6/f1a790486c9c513ff9924cff1c1571dc/img23.jpg)
Содержание слайда: KerberRoasting
“Domain accounts used to run services should have long and complex passwords”
№25 слайд![KerberRoasting Domain](/documents_6/f1a790486c9c513ff9924cff1c1571dc/img24.jpg)
Содержание слайда: KerberRoasting
“Domain accounts used to run services should have long and complex passwords”
№26 слайд![DC Backups Solution Ensure no](/documents_6/f1a790486c9c513ff9924cff1c1571dc/img25.jpg)
Содержание слайда: DC Backups
Solution: Ensure no one but Domain Admins can access your DC backups
№27 слайд![DC Backups Only Domain Admins](/documents_6/f1a790486c9c513ff9924cff1c1571dc/img26.jpg)
Содержание слайда: DC Backups
“Only Domain Admins should have access to DC Backups”
№28 слайд![Takeaways](/documents_6/f1a790486c9c513ff9924cff1c1571dc/img27.jpg)
Содержание слайда: Takeaways
№29 слайд![DA - Kit](/documents_6/f1a790486c9c513ff9924cff1c1571dc/img28.jpg)
Содержание слайда: DA101 - Kit
№30 слайд![Questions?](/documents_6/f1a790486c9c513ff9924cff1c1571dc/img29.jpg)
Содержание слайда: Questions?