Catching Active Directory Reconnaissance from Rogue Devices

Presented by

Robert Crisp, VP of Technical Services, Todd Rosenberry, Sr Consulting Engineer, Nick Houck, Director Security Engineering

About this talk

Attackers target Active Directory (AD) as part of their discovery and data gathering tactics to identify high-value assets such as privileged accounts and critical infrastructure. Organizations are challenged with protecting against AD threats originating from non-Windows devices such as Linux, IOS, and others in addition to Windows-based, domain-joined endpoints. Join us for a live discussion and demonstration to learn how adding AD protection capabilities installed on domain controllers provides real-time detection from non-domain-joined endpoints of: - Golden & Silver Ticket attacks - DCSync Attacks - Reconnaissance of AD objects across LDAP, SAMR, LSAR
Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (34)
Subscribers (5350)
Attivo Networks closes the cyber security detection deficit with dynamic deception that accurately and efficiently reveals in-network threats and their lateral movement.