Class Format: Speaker will be on video and audio, as well as chatting(texting) in Discord. You will only be able to ask questions in Discord (
not via voice to the speaker) So you must signup for Discord - and join the GRAYHAT Discord Server [https://discord.gg/grayhat and the Hands-on-labs channel during the training time.
Hacking in the Kill-ChainThis 4-hour lab will help the attendees to increase their understanding of the Attack Kill Chain by letting them assume the role of the attacker.
The lab will cover - the initial compromise of a client through spear phishing and exploiting a client side vulnerability - escalating the privileges on the compromised client - using the compromised client for pivoting, to attack other machines on the inside - using social engineering to get domain admin credentials - using domain admin credentials to grab hashes from a domain controller - using hashes in pass-the hash attacks and creating Golden Tickets.
The expected audience is network and security engineers and architects, who want to understand and get hands-on experience with the attackers mindset, methods and tools, in order to build better defenses. This lab will not discuss defensive techniques.
Students are require to use their own laptop or VM where they can install Cisco AnyConnect VPN Client for access to the lab.
Attendees must download and install the Cisco AnyConnect VPN Client prior to attending this class !
Required Materials:A computer to view the training, and you are required to use your own laptop or VM where they can install Cisco AnyConnect VPN Client for access to the lab.
https://uci.service-now.com/kb_view.do?sysparm_article=KB0010199
