Active Directory Security: Early Stage Attack Activities to Watch For
Date: Tuesday, June 25th at 11:00am PT / 2:00pm ET
Attackers have demonstrated a consistent and ongoing ability to obtain access to workstations inside the network boundary through phishing, web and email attacks. From here, attackers set their sights on gaining control of Active Directory as a means to an end; compromising Active Directory is an easy way to gain access to all critical corporate data and resources.
This presentation will discuss two early stage attack activities: LDAP reconnaissance and Password Spraying – that allow attackers to map out the target infrastructure to plan out their attack and begin to take over accounts. Detection strategies and mitigation steps will also be explained.
You will learn:
- How to recognize attack activities early in the attack cycle
- What resources attackers look for
- Techniques they use to plan their attacks
- How they exploit weak passwords to take over accounts