Real World Windows Pentest Tutorial (demos of Top 5 Active Directory hacks)

A big shoutout to TCM Security for sponsoring this video. Register now to receive a 50% discount on your first month at the TCM Security Academy, potentially making your most significant step toward a career in ethical hacking. Go here: davidbombal.wiki/3vQsqWm // TCM Security SOCIAL// LinkedIn : www.linkedin.com/company/tcm-security-inc/ Twitter : twitter.com/TCMSecurity YouTube (The Cyber Mentor): youtube.com/c/TheCyberMentor Discord: discord.com/invite/tcm Instagram: www.instagram.com/tcmsecurity/ Facebook: www.facebook.com/tcmsecure/ TikTok: www.tiktok.com/@tcmsecurity Academy Website: academy.tcm-sec.com/ TCM Certifications: certifications.tcm-sec.com/ Discord: discord.com/invite/tcm Website: tcm-sec.com/ Breach Point Website: breachpoint.com/ // Heath Adam’s SOCIAL // LinkedIn: www.linkedin.com/in/heathadams/ // Resources REFERENCE // How to build and active directory hacking lab online: https://youtu.be/xftEuVQ7kY0 // David's SOCIAL // Discord: discord.com/invite/usKSyzb X: www.twitter.com/davidbombal Instagram: www.instagram.com/davidbombal LinkedIn: www.linkedin.com/in/davidbombal Facebook: www.facebook.com/davidbombal.co TikTok: tiktok.com/@davidbombal YouTube: youtube.com/@davidbombal // MY STUFF // www.amazon.com/shop/davidbombal // SPONSORS // Interested in sponsoring my videos? Reach out to my team here: sponsors@davidbombal.com/ // MENU // 00:00 - Introduction 01:30 - Labs Options 03:03 - How Do The Labs Work? 04:32 - Where Should You Start? 07:25 - TCM Certifications 09:40 - LLMNR Poisining 13:02 - Lab Example #1 (LLMNR Poisoning) 20:15 - Best Defences 21:01 - LLMNR: Mitigation 23:17 - SMB Relay 27:07 - Lab Example #2 (SMB Relay) 39:43 - When To Run Pentest 41:01 - Is Shell Popping Necessary? 43:43 - Why You Should Have A Pentest 46:09 - SMB Relay Mitigation 48:18 - Lazy Security 49:27 - Favourite Password Manager 50:00 - Gaining Shell Access 51:37 - Is IPv6 Common? 56:08 - Should You Disable IPv6? 57:04 - Do Large Organizations Use IPv6 Properly? 57:33 - Lab Example #3 (IPv6) 01:02:04 - As Administrator 01:06:21 - Pentests Are Important 01:07:30 - IPv6 Mitigation 01:09:56 - Pass The Password / Pass The Hash 01:14:00 - The CME DB 01:14:32 - Lab Example #4 (The CME DB) 01:19:15 - Pass The Hash / Pass the Password Mitigation 01:20:12 - Real World VS CTFs 01:21:35 - Kerberoasting 01:24:11 - Lab Example #5 (Kerberoasting) 01:26:38 - Kerberoasting Mitigation 01:27:50 - Are Window's 'Default Settings' Safe? 01:28:53 - Reach Out to TCM Security 01:29:16 - Real Life Pentest Case Studies 01:35:18 - Lab VS Real World 01:37:15 - How To Access The Internal Network 01:39:30 - Where To Get Started 01:41:11 - Conclusion 01:41:46 - Outro pentest pentester hack hacker hacking ethical hacking ethical hacker course ethical hacker windows ad hacking microsoft windows microsoft windows hack windows 11 hack windows 11 hacking Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel! Disclaimer: This video is for educational purposes only. #hacker #pentester #microsoft

David Bombal .king of online IT personnel. There are other professionals like him ,but he tops social media space on tech matters .

One of the best interview with great hands on demos and most important real world cases. Love it

It's such a great thing how everyone comes together now. Love to see it guys ❤

Thanks for the video! I recently finished taking a course at university about advanced ethical hacking and it contained a lot of stuff about Active Directory and this video helped in reviewing for my final exam :)

Very useful. Explains difference between pen testing & red teaming with practical senarios & hands on AD penetration demos !

Cyber mentor is an excellent teacher and provides a lot of his older courses for free on his channel. It doesn't include everything from the paid version, but it's a great place to start. I ended up taking his advice and going back to the basics doing compTIA stuff as i wasn't a computer guy really before i gained an interest in hacking, and i'm glad i did otherwise i wouldn't have had a chance to sit with uncle Mike Myers for a week or two. Cheers for the interviews, i enjoy both TCM and Braxman, both legends.

Such a pleasure to see Heath presenting AD Real World Methodology on your channel David! This was such a treat!! 🎉❤

I always end up down an educational rabbit hole after your videos. Thanks David.

Thank you so much! This is such a great interview/training. I have been reborn🙆🙋‍♂️

Just Amazing! thank you David and Heath!

Long video but totally worth it. Great video. TCM is awesome.

David you the boss , I learnt so many things from your channel , I can't believe the internet looks like without your channel , thank you so very much .

I like it, it's a very informative video especially for anyone with aspirations to be a pentester.

Thank you David for bringing Heath into your channel. So love to see you both together. Not sure you remember but I requested for Heath to see in your channel a year back. So happy to see you both.

I'm passionate about IT because every day I learn new things, or better ways to perform the tasks I do.

I love your network mane, its amazing. Thanks for all the gems.

Best way to hack many company's would be to get in as a cleaning lady/guy and pick all the post-it's from the screens containing usernames and passwords xD

Thanks David - thanks Heith.! David, i been with you as a subscriber to your channel for soooo long now. Just want to say that you are my go to for Education in sec etc and the stuff you produce and questions u ask your guest speakers is AWESOME - THANK YOU, I really mean that, THANK YOU…. and Heith, your one of few who really spell out everything THE WORKS with nothing leftist and u proved your every word right here and that is absolutely for free without a cent spent and expected nothing in return i commend you for this and supporting the community, THANK YOU… Glad for this channel Dave - Cheers Nathan

Thanks David, Most waited