Name: Feature or a Vulnerability? Tale of an Active Directory Pentest
Start: 2023-06-13T15:00:00-0400
End: 2023-06-13T15:50:00-0400

Streaming: https://mssvideo.vcu.edu/RVAsec

Back To Schedule

Feature or a Vulnerability? Tale of an Active Directory Pentest

Feedback form is now closed.

Video Stream

This talk is a summation of stories from my recent penetration tests inside Active Directory networks. I will use this time to discuss common methods I have used to obtain initial access inside Active Directory environments, the features that paved the way to lateral movement, and vulnerabilities that escalated me to Domain Admin. This talk is laid out in a way that benefits both entry-level and experienced penetration testers. The content is for both blue and red teamers looking to better understand common Active Directory configurations that can lead to compromise. It has everything from memes to kerberoasting, with a pinch of humor (no dad jokes, I promise).

Speakers

Qasim Ijaz

Director of Offensive Security, Blue Bastion Security

Qasim "Q" Ijaz is a Director of Offensive Security at Blue Bastion Security and specializes in healthcare security and penetration testing. He has conducted hundreds of penetration tests in small to large environments with a focus on networks and web applications testing. His areas... Read More →

Tuesday June 13, 2023 3:00pm - 3:50pm EDT
Ballroom C/D

101

RVAsec 2023

Qasim Ijaz

Attendees (141)

RVAsec 2023

Log in to save this to your schedule, view media, leave feedback and see who's attending!

Qasim Ijaz

Attendees (141)