-
i felt the same and how i did dealt with it is did setup a windows server 2019 and added 3 machines Vms ( windows 10 2 times and an ubuntu ) and to be honest did help a lot to understand the architecture behinde AD , so the best way is do the same and play with it and you will get undersatnd it better -
Actually, prior AD knowledge is needed when attending PEN-200.
I also attended PEN-200 without reading the prerequisite and find myself lacking the understanding of AD too. The AD material OffSec recommends is the microsoft manual of AD which can be found here:
For further reference:
Leave a comment:
-
easiest way is to go on Microsoft docs and see the info you need there: https://docs.microsoft.com/en-us/win...omain-services , on the left you can navigate to different topics, also here is a book from Microsoft on Mitigating Pass the hash and others , there is a version 1 and 2: https://www.microsoft.com/en-us/down....aspx?id=36036 , they explain the attacks and how to mitigate but you can use all of these in reverse to see what protections you might find and need to bypass, what logs to delete etc
) finally, there are free rooms on TryHackMe where they also teach you concepts and then you can apply : https://tryhackme.com/room/activedirectorybasics, https://tryhackme.com/room/attackingkerberos
Leave a comment:
-
There are AD books and Kerberos books (O'Reilly) that may have what you want. I can offer the following websites which may be complementary to the PDF material,
Leave a comment:
-
Active directory book
Hello,
During my study of the chapter 21 concerning the "Active Directory Attack", I definitively realize my lack of knowledges on this subject; on its architecture it self at a basis level as well about its its associated authentification protocols such as NTLM and Kerberos.
For thoses reasons, I'm wondering if you know a book convering at least minimaly all theses topics?
Thanks,
Leave a comment: