Advanced Infrastructure Hacking Training

Harden your organisation’s infrastructure and make it a less attractive target for attackers by building a team that can identify, test, and recommend remediations for vulnerabilities and misconfigurations throughout your environments.

Trained delegates can:

• Perform security testing that uses complex attack chaining across Windows (local), Active Directory, Linux, and common cloud environments
• Design this testing around real-world attacker behaviour and tooling to ensure its relevance to the threats facing your organisation
• Identify misconfigurations from network level to system level
• Understand the business impact of misconfigurations and vulnerabilities and articulate this to key stakeholders
• Implement logging and monitoring processes to detect live attacks
• Take on greater responsibility in the team and become an advocate of security in the wider business

IPV4/IPV6 SCANNING, OSINT

• Advanced topics in network scanning
• Understanding & exploiting IPv6 Targets
• Advanced OSINT Data gathering

WEB TECHNOLOGIES

• Exploiting DVCS (git)
• Owning Continuous Integration (CI) servers
• Deserialization Attacks (Java, Python, Node, PHP)

HACKING DATABASE SERVERS

• Mysql
• Postgres
• Oracle
• MongoDB

WINDOWS EXPLOITATION

• Windows Enumeration and Configuration Issues
• Windows Desktop ‘Breakout’ and AppLocker Bypass Techniques (Win 10)
• Local Privilege Escalation
• A/V & AMSI Bypass techniques
• Offensive PowerShell Tools and Techniques
• Post Exploitation Tips, Tools and Methodology

AD EXPLOITATION

• Active Directory Delegation Reviews and Pwnage (Win 2016 server)
• Pass the Hash/Ticket Pivoting and WinRM Certificates
• Cross Domain and Forest attacks
• Pivoting, Port Forwarding and Lateral Movement Techniques
• Persistence and backdooring techniques (Golden Ticket, DCSync, LOLBAS)
• Command and Control (C2) Frameworks

LINUX EXPLOITATION

• Linux Vulnerabilities and Configuration Issues
• Treasure hunting via enumeration
• File Share/SSH Hacks
• X11 Vulnerabilities
• Restricted Shells Breakouts
• Breaking Hardened Web Servers
• Local Privilege Escalation
• MongoDB exploitation
• TTY hacks, Pivoting
• Gaining root via misconfigurations
• Kernel Exploitation
• Post Exploitation and credentials harvesting

CONTAINER BREAKOUT

• Breaking and Abusing Docker
• Exploiting Kubernetes environments
• Breaking out of kubernetes containers

CLOUD HACKING

• AWS/Azure/GCP specific attacks
• Storage Misconfigurations
• Credentials, API’s and token Abuse
• IaaS, PaaS, SaaS, CaaS and Serverless exploitation
• Azure AD attacks

VPN EXPLOITATION

• Exploiting Insecure VPN Configuration

VLAN ATTACKS

• VLAN Concepts
• VLAN Hopping Attacks