Lateral Movement with Mimikatz 2

Focused View

Lee Allen

29:06

118 View

Exercise Files

lateral-movement-mimikatz.zip

Module 1 - Tool Introduction

1. Course Overview.mp4

01:02

Module 2 - Lateral Movement and Defense Evasion with Mimikatz

1. MITRE ATT&CK and Mimikatz.mp4

05:33

2. Using Mimikatz to Pass The Hash (PTH).mp4

05:20

3. Using Mimikatz to Pass The Ticket (PTT).mp4

03:33

4. Creating Golden Tickets with Mimikatz.mp4

06:02

5. Creating Silver Tickets with Mimikatz.mp4

03:38

6. Creating a Rogue Domain Controller and Changing Domain Objects with DCShadow.mp4

02:55

Module 3 - Resources

1. Additional Resources.mp4

01:03

Description

Among other features, Mimikatz provides lateral movement capabilities such as pass the hash, user impersonation, and the creation of golden and silver tickets. Skill up your lateral movement techniques with Mimikatz.

What You'll Learn?

Would you like to move from system to system without clear text credentials? How about impersonating a domain controller to inject data of your choosing? In this course, Lateral Movement with Mimikatz 2, you will learn how to leverage the advanced lateral movement capabilities of the open-source Mimikatz project towards post-exploitation activities. First, you will see how to 'Pass the Hash' to authenticate without the need of a clear text password. Next, you will discover how Mimikatz is used to bypass the domain controllers with 'Pass the Ticket'. Finally, you will explore how to create golden and silver tickets to impersonate domain users and service accounts. When finished with this course, you will have the skills and knowledge of the open-source Mimikatz tool needed to emulate lateral movement techniques aligned with Mitre ATT&CK.

More details

User Reviews

Rating

average 0

Total votes0

Focused display

Network Security

Information Security

Windows Server

Lee Allen

Instructor's Courses

With over two decades of experience in the security industry, Lee is a seasoned professional with a proven track record of delivering top-notch security services to a diverse range of organizations. From Internet Service Providers and computer manufacturers to global pharmaceutical companies, public universities, and a major bank, Lee has worked with some of the biggest names in the industry. With experience as a leader of the penetration testing team at a large bank, Lee has developed deep expertise in identifying vulnerabilities and developing effective mitigation strategies. He is also an author, having published multiple books on penetration testing and creating more than a dozen video courses on various security topics for Pluralsight. Currently, Lee is focused on leveraging his skills in static application security testing to help financial institutions strengthen their defenses against cyber threats.

Pluralsight

View courses Pluralsight

Pluralsight, LLC is an American privately held online education company that offers a variety of video training courses for software developers, IT administrators, and creative professionals through its website. Founded in 2004 by Aaron Skonnard, Keith Brown, Fritz Onion, and Bill Williams, the company has its headquarters in Farmington, Utah. As of July 2018, it uses more than 1,400 subject-matter experts as authors, and offers more than 7,000 courses in its catalog. Since first moving its courses online in 2007, the company has expanded, developing a full enterprise platform, and adding skills assessment modules.