Attack and defend Active Directory.

Dhiyanesh Selvaraj, Security Consultant at SecureLayer7, walked teams through how attackers move through Active Directory and how defenders break the chain. This is the recording.

Active Directory is the identity backbone for most enterprises, which makes it the highest-value target after any initial foothold. Kerberoasting, AS-REP roasting, weak service accounts, and over-privileged delegations turn a single compromised workstation into domain admin.

The session covers why AD is target-rich by design, the most common attack vectors in real engagements, the security policies that meaningfully raise the cost of compromise, and how an effective AD audit surfaces the gaps before someone else does.