Companies Home Search Profile
TrainingHub TrainingHub

Privilege Escalation with Rubeus

Focused View

Ricardo Reimao

20:07

52 View
  • privilege-escalation-rubeus.zip
  • 1. Course Overview.mp4
    01:32
  • 1. Understanding Privilege Escalation via Kerberos.mp4
    05:34
  • 2. Performing a Kerberoast Attack.mp4
    04:54
  • 3. AS-REP Roasting and Cracking Hashed Credentials.mp4
    05:42
  • 1. More Information.mp4
    02:25

    • Description

    After getting initial access to a domain, your job is to escalate privileges to get admin-level access. In this course, you will learn how to use Rubeus to perform two well-known privilege escalation attacks: Kerberoasting and AS-REP Roasting.

    What You'll Learn?

      One of your main objectives in a red team engagement is getting admin-level access to the domain. Escalating your privileges through vulnerability exploitation is usually difficult in highly-patched environments. In this course, Privilege Escalation with Rubeus, we will explore how to get admin credentials using two well-known attacks against active directory domains: Kerberoasting and AS-REP Roasting. First, you will learn how to harvest hashed credentials using Rubeus to execute a Kerberoasting attack. Then, you will see how to harvest even more hashed credentials using the AS-REP technique. Finally, you will explore how to crack those hashed passwords using Hashcat. This course covers three important tactics from the Mitre Att&ck framework: Access Token Manipulation (T1134), Kerberoasting (T1558.003) and AS-REP Roasting (T1558.004).

    More details

    User Reviews
    Rating
    0
    0
    0
    0
    0
    average 0
    Total votes0
    Focused display
    Category

    Ethical Hacking

    Penetration Testing

    Ricardo Reimao
    Ricardo Reimao
    Instructor's Courses
    Ricardo is a Cybersecurity Consultant based in Toronto (Canada). He has 14+ years of IT experience, 10 of them in the IT Security field. His main interests are: SIEM solutions (IBM QRadar), Enterprise Security Risk, Penetration Testing, Security processes/procedures and Network Security.
    Pluralsight
    Pluralsight
    View courses Pluralsight
    Pluralsight, LLC is an American privately held online education company that offers a variety of video training courses for software developers, IT administrators, and creative professionals through its website. Founded in 2004 by Aaron Skonnard, Keith Brown, Fritz Onion, and Bill Williams, the company has its headquarters in Farmington, Utah. As of July 2018, it uses more than 1,400 subject-matter experts as authors, and offers more than 7,000 courses in its catalog. Since first moving its courses online in 2007, the company has expanded, developing a full enterprise platform, and adding skills assessment modules.
    • language english
    • Training sessions 5
    • duration 20:07
    • level average
    • English subtitles has
    • Release Date 2023/04/25

    Courses related to Ethical Hacking

    IoT Pentest
    Udemy Luciano Ferrari
    Luciano Ferrari
    IoT Pentest
    1:54:37
    07/23/2023
    Subtitle
    Ethical Hacking: SQL Injection
    Linkedin Learning Malcolm Shore
    Malcolm Shore
    Ethical Hacking: SQL Injection
    1:39:34
    English subtitles
    09/08/2024
    EC-Council - COMPTIA SECURITY PLUS EXAM PREP
    O'ReillyEC-Council - COMPTIA SECURITY PLUS EXAM PREP
    10:01:57
    10/23/2023

    Courses related to Penetration Testing

    Subtitle
    Pen Testing: Reporting
    Pluralsight Gavin Johnson-Lynn
    Gavin Johnson-Lynn
    Pen Testing: Reporting
    1:06:42
    English subtitles
    02/25/2023
    Subtitle
    Defense Evasion with Invoke-Obfuscation
    Pluralsight Ricardo Reimao
    Ricardo Reimao
    Defense Evasion with Invoke-Obfuscation
    24:15
    English subtitles
    04/18/2023
    Subtitle
    Threat Intelligence and Threat Hunting
    LiveLessonsThreat Intelligence and Threat Hunting
    8:58:08
    English subtitles
    02/12/2024