Hack The Box Certified Active Directory Pentesting Expert Training (CAPE)

 

Course Overview

The HTB Certified Active Directory Pentesting Expert (HTB CAPE) is a highly hands-on certification assessing candidates' skills in identifying and exploiting advanced Active Directory (AD) vulnerabilities. HTB CAPE certification holders will possess technical competency in AD and Windows penetration testing, understanding complex attack paths, and employing advanced techniques to exploit them. HTB CAPE certification holders will demonstrate proficiency in executing sophisticated attacks abusing different authentication protocols such as Kerberos and NTLM and abusing misconfigurations within AD components and standard applications in AD environments such as Active Directory Certificate Services (ADCS), Windows Update Server Services (WSUS), Exchange, and Domain Trusts. Furthermore, they will be adept at leveraging specialized tools to exploit AD from Linux and Windows and utilizing Command and Control (C2) frameworks for post-exploitation operations. They will also be able to conduct internal penetration tests professionally against modern AD environments.

The HTB CAPE certification represents the next step in advancing in AD pentesting beyond the HTB Certified Penetration Testing Specialist (HTB CPTS) certification.

Who should attend

  • Senior Penetration Testers
  • Windows & Active Directory Penetration Testers
  • Red Team Operators
  • Active Directory Security Specialists
  • System Administrators
  • Cybersecurity Consultants
  • Security Analysts

Prerequisites

The following is a list of prerequisites for a successful outcome:

  • Interpreting a letter of engagement
  • Advanced knowledge of Active Directory infrastructure and security concepts
  • Knowledge around Windows and Active Directory and their functionality
  • Understanding Active Directory authentication protocols (Kerberos, NTLM, LDAP, Certificate based-authentication, etc.)
  • Familiarity with common and advanced Active Directory attacks and exploitation techniques
  • Proficiency in navigating complex AD structures and understanding AD permissions and policies
  • Ability to detect and exploit misconfigurations in Active Directory environments
  • Knowledge of bypass techniques to circumvent various security measures in Windows environments
  • Capability to recommend and implement security hardening measures for AD
  • Professionally communicating and reporting vulnerabilities

Outline: Hack The Box Certified Active Directory Pentesting Expert Training (CAPE)

Module 1: Active Directory Enumeration & Attacks

  • Active Directory LDAP
  • Active Directory PowerView
  • Active Directory BloodHound

Module 2: Windows Lateral Movement

  • Using CrackMapExec

Module 3: Kerberos Attacks

  • DACL Attacks I
  • DACL Attacks II
  • NTLM Relay Attacks
  • ADCS Attacks
  • Active Directory Trust Attacks

Module 4: Post-Exploitation and Evasion

  • Intro to C2 Operations with Sliver
  • Introduction to Windows Evasion Techniques
  • MSSQL, Exchange, and SCCM Attacks

Prices & Delivery methods

Online Training

Duration
5 days

Price
  • US $ 4,300
Enroll now
Request a date

Schedule

Currently there are no training dates scheduled for this course.