{"product_id":"pentesting-active-directory-and-windows-based-infrastructure-a-comprehensive-practical-guide-to-penetration-testing-microsoft-infrastructure-paperback","title":"Pentesting Active Directory and Windows-based Infrastructure: A comprehensive practical guide to penetration testing Microsoft infrastructure - Paperback","description":"\u003cdiv\u003e\u003cp style=\"text-align: right;\"\u003e\u003ca href=\"https:\/\/reportcopyrightinfringement.com\/\" target=\"_blank\" rel=\"nofollow\"\u003e\u003cb\u003eReport copyright infringement\u003c\/b\u003e\u003c\/a\u003e\u003c\/p\u003e\u003c\/div\u003e\u003cp\u003eby \u003cb\u003eDenis Isakov\u003c\/b\u003e (Author)\u003c\/p\u003e\u003cp\u003e\u003c\/p\u003e\u003cp\u003e\u003cstrong\u003eEnhance your skill set to pentest against real-world Microsoft infrastructure with hands-on exercises and by following attack\/detect guidelines with OpSec considerations\u003c\/strong\u003e\u003c\/p\u003eKey Features\u003cul\u003e\n\u003cli\u003eFind out how to attack real-life Microsoft infrastructure\u003c\/li\u003e\n\u003cli\u003eDiscover how to detect adversary activities and remediate your environment\u003c\/li\u003e\n\u003cli\u003eApply the knowledge you've gained by working on hands-on exercises\u003c\/li\u003e\n\u003cli\u003ePurchase of the print or Kindle book includes a free PDF eBook\u003c\/li\u003e\n\u003c\/ul\u003eBook Description\u003cp\u003eThis book teaches you the tactics and techniques used to attack a Windows-based environment, along with showing you how to detect malicious activities and remediate misconfigurations and vulnerabilities.\u003c\/p\u003e\u003cp\u003eYou'll begin by deploying your lab, where every technique can be replicated. The chapters help you master every step of the attack kill chain and put new knowledge into practice. You'll discover how to evade defense of common built-in security mechanisms, such as AMSI, AppLocker, and Sysmon; perform reconnaissance and discovery activities in the domain environment by using common protocols and tools; and harvest domain-wide credentials. You'll also learn how to move laterally by blending into the environment's traffic to stay under radar, escalate privileges inside the domain and across the forest, and achieve persistence at the domain level and on the domain controller. Every chapter discusses OpSec considerations for each technique, and you'll apply this kill chain to perform the security assessment of other Microsoft products and services, such as Exchange, SQL Server, and SCCM.\u003c\/p\u003e\u003cp\u003eBy the end of this book, you'll be able to perform a full-fledged security assessment of the Microsoft environment, detect malicious activity in your network, and guide IT engineers on remediation steps to improve the security posture of the company.\u003c\/p\u003eWhat you will learn\u003cul\u003e\n\u003cli\u003eUnderstand and adopt the Microsoft infrastructure kill chain methodology\u003c\/li\u003e\n\u003cli\u003eAttack Windows services, such as Active Directory, Exchange, WSUS, SCCM, AD CS, and SQL Server\u003c\/li\u003e\n\u003cli\u003eDisappear from the defender's eyesight by tampering with defensive capabilities\u003c\/li\u003e\n\u003cli\u003eUpskill yourself in offensive OpSec to stay under the radar\u003c\/li\u003e\n\u003cli\u003eFind out how to detect adversary activities in your Windows environment\u003c\/li\u003e\n\u003cli\u003eGet to grips with the steps needed to remediate misconfigurations\u003c\/li\u003e\n\u003cli\u003ePrepare yourself for real-life scenarios by getting hands-on experience with exercises\u003c\/li\u003e\n\u003c\/ul\u003eWho this book is for\u003cp\u003eThis book is for pentesters and red teamers, security and IT engineers, as well as blue teamers and incident responders interested in Windows infrastructure security. The book is packed with practical examples, tooling, and attack-defense guidelines to help you assess and improve the security of your real-life environments. To get the most out of this book, you should have basic knowledge of Windows services and Active Directory.\u003c\/p\u003eTable of Contents\u003col\u003e\n\u003cli\u003eGetting the Lab Ready and Attacking Exchange Server\u003c\/li\u003e\n\u003cli\u003eDefense Evasion\u003c\/li\u003e\n\u003cli\u003eDomain Reconnaissance and Discovery \u003c\/li\u003e\n\u003cli\u003eCredential Access in Domain\u003c\/li\u003e\n\u003cli\u003eLateral Movement in Domain and Across Forests\u003c\/li\u003e\n\u003cli\u003eDomain Privilege Escalation\u003c\/li\u003e\n\u003cli\u003ePersistence on Domain Level\u003c\/li\u003e\n\u003cli\u003eAbusing Active Directory Certificate Services\u003c\/li\u003e\n\u003cli\u003eCompromising Microsoft SQL Server\u003c\/li\u003e\n\u003cli\u003eTaking over WSUS and SCCM\u003c\/li\u003e\n\u003c\/ol\u003e\n            \u003cdiv\u003e\n\u003cstrong\u003eNumber of Pages:\u003c\/strong\u003e 360\u003c\/div\u003e\n            \u003cdiv\u003e\n\u003cstrong\u003eDimensions:\u003c\/strong\u003e 0.75 x 9.25 x 7.5 IN\u003c\/div\u003e\n            \u003cdiv\u003e\n\u003cstrong\u003ePublication Date:\u003c\/strong\u003e November 17, 2023\u003c\/div\u003e\n            ","brand":"BooksCloud","offers":[{"title":"Default Title","offer_id":44287736512614,"sku":"9781804611364","price":74.37,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0599\/7255\/0758\/files\/mkQazAxa__9781804611364.webp?v=1766668532","url":"https:\/\/infinitylightwa.com\/products\/pentesting-active-directory-and-windows-based-infrastructure-a-comprehensive-practical-guide-to-penetration-testing-microsoft-infrastructure-paperback","provider":"Infinity Light","version":"1.0","type":"link"}