Unveiling Active Directory Secrets: Uncommon Tricks for Enhanced Security

Vincent Le Toux (VINCI, FR) Vincent Le Toux is head of the VINCI-CERT and also the author of Ping Castle: an Active Directory security tool. He has also made many open source contributions such as mimikatz, OpenPGP, OpenSC, GIDS applet, etc. Finally, he already did presentations in security events, mainly BlackHat, FIRST and BlueHat. --- Embark on a journey into the concealed world of Active Directory (AD), where we disclose a dozen lesser-known insights obtained from X and the official MS-ADTS documentation. Delve into common yet overlooked configuration errors, advanced reconnaissance techniques, and strategies to gain control of AD.This knowledge, absent in standard incident response reports, offers a clandestine perspective derived from unconventional sources. In this session, we present real-world scenarios, demystifying each trick while providing insights into detection and mitigation.This discourse is distinguished by the elusive nature of the shared knowledge, making it a valuable addition to your AD security arsenal. Join us for an exploration that goes beyond the ordinary, arming you with uncommon insights to fortify your AD environment.