*** DATA IN DEFINIZIONE ***
0
giorni
0
ore
0
minuti
0
secondi

Per restare informato sulla prossima edizione del 

BOOTCAMP POWERSHELL: Tecniche di Pentesting 

compila il form in basso!!!

 PRENDI PARTE ALLA 

II°EDIZIONE DEL 

BOOTCAMP POWERSHELL:Tecniche di Pentesting 

EROGATO DAL 

TRAINER CARMELO CAVALLO.

  

 Il Corso Intensivo si articolerà in 4 live della durata di 3 ore ciascuna (per un totale di 12h) 

in partenza il 04/03/2025

Le sessioni verranno registrate per dare la possibilità ai partecipanti di rivederle ogni qualvolta ne avessero bisogno.

 

Partecipa al bootcamp e diventa un HERO di POWERSHELL!!! 

PLANNING DEL CORSO

SESSIONE 1 - POWERSHELL FUNDAMENTALS TECHNIQUES FOR PENTESTING

  -   Overview on Powershell Execution Policy and how to Bypass it

  -   How to using Import-Module cmdlet

  -   How to download and install a module from GitHub repository

  -   Powershell Scripts Execution in Memory (Download Execute Cradle)

  -   How to using Test-NetConnection cmdlet

  -   How to use Get-Context cmdlet

  -   How to use Invoke-WebRequest

  -   How to Download Scripts from a Remote HTTP Server

  -   How to using Invoke-RestMethod cmdlet and Parsing JSON data

  -   How to Copy file on Remote computer

  -   How to Upload and Download files from FTP Server

  -   How to manage ACL permissions using Powershell

  -   Using Race Toolkit module

  -   Using Powerview module

  -   How to run a remote script using SMB protocol

  -   Using Certutil.exe to download malicious scripts

SESSIONE 2 - POWERSHELL REMOTING AND TECHNIQUES FOR ENUMERATION

  -   Overview WinRM protocol & Powershell Remoting

  -   Powershell Remoting with Invoke-Command

  -   Powershell Remoting with Enter-PSSession

  -   How to use variables, functions and scripts in a remote Powershell session

  -   Using WMIObject cmdlet for System Gathering information

  -   Network enumeration and Port Scanning

  -   SMB enumeration and Testing weak password

  -   How to using Get-ADDefaultDomainPasswordPolicy

  -   LDAP Permission and Testing LDAP Connection

  -   Kerberos and SPN enumeration

  -   How to use Remote Windows Registry

  -   How to Remote software installing

  -   Remote Exploitation with SMB and RPC, WinRM, RDP and WMI

SESSIONE 3 - TECHNIQUES FOR BYPASSING AND OBFUSCATION OF SCRIPTS

  -   Powershell Detections (AMSI, CLM, Powershell Logging)

  -   Overview on Anti-Malware Scan Interface and how to bypass it

  -   Overview on Powershell Logging and How to Bypass it

  -   Overview on CLM and How to bypass it

  -   How to obfuscate strings of parameters

  -   Obfuscating Powershell cmdlets

  -   Bypassing AV Signatures for Powershell on Invoke-Mimikatz & PowerUp

  -   How to create a reversible TCP using Powershell

  -   How to Create a Schedule Task using Powershell

  -   Create Local Users and Domain Users  

  -   Managing groups membership Local and Domain

  -   Payload Generation with MSFvenom

SESSIONE 4 - CREDENTIAL EXTRACTION AND ABUSE

  -   How to using Invoke-Mimikatz tool

  -   Collection of credentials using the Mimikatz tool

  -   How to DUMP the SAM database to extract local passwords

  -   How to DUMP to NTDS.DIT database to extract domain passwords

  -   How to DUMP to DSRM password

  -   How to use DCSync attack

  -   Brute force Password (Decoding Hashing) with John The Ripper tool

  -   Abuse Unquoted Service Path

  -   Abuse Insecure Service Permissions

  -   Exploring Weak folder permissions

 

*** 10 LEARNING OBJECTIVES *** 

  
HeroAdmin 
P.Iva 02740740747
Via Calamo, 4 
72017 – Ostuni (BR)
  
  

  Copyright 2024 © Hero Admin - All rights reserved.

                   PRIVACY POLICY - TERMINI E CONDIZIONI  

Built with