Windows Group Policy: Powerful Configuration Tool or Hacker’s Best Friend?

Presented by

Darren Mar-Elia

About this talk

What started as a sleepy technology for efficiently configuring 1000s of Windows desktops and servers, has now become a gold mine for attackers looking to expose your security posture and leverage your GPOs as “malware delivery vehicles”. In this webinar, Darren Mar-Elia (the “GPOGUY”) will summarize the nearly 4 years of research he’s done on the various ways attackers are exploiting GP. More importantly, he will break down the key steps you can take to defend your Group Policy environment, and therefore your Windows environment, from abuse. During this workshop, we’ll demonstrate: - How attackers use Group Policy for reconnaissance - How attackers use Group Policy as a vector for malware - How you can configure your AD and GPOs to prevent abuse - Best practices for managing Group Policy with security in mind
Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (91)
Subscribers (3456)
Semperis is the pioneer of identity-driven cyber resilience for cross-cloud and hybrid environments. The company provides cyber preparedness, incident response, and disaster recovery solutions for enterprise directory services—the keys to the kingdom. Semperis’ patented technology for Microsoft Active Directory protects over 40 million identities from cyberattacks, data breaches, and operational errors. Semperis is headquartered in New York City and operates internationally, with its research and development team distributed between San Francisco and Tel Aviv. Semperis hosts the award-winning Hybrid Identity Protection conference. The company has received the highest level of industry accolades; most recently being named Best Business Continuity / Disaster Recovery Solution by SC Magazine’s 2020 Trust Awards. Semperis is accredited by Microsoft and recognized by Gartner. Join our next HIP Conference: https://bit.ly/3q6JUbD