Attack Simulation TTPs: Group Policy and Audit Setting Enumeration with Carlos Perez

Date: June 19, 2019

Recorded June 19, 2019 at 1 P.M. EST

Situational awareness is key when one lands access on a target system as part of an attack simulation. Knowing what controls are present and which are likely present allows performance of a proper threat assessment for the access that has been obtained. This information is critical because it determines the tools, tactics, techniques, and procedures (TTPs) one may use and the initial speed of operations to follow.

In this webcast we will cover enumerating the Group Policy Objects (GPOs) applied to the current host, enumerating the advance auditing policy applied to the host, as well as providing additional insights—all from a low privilege domain user on the box. The webinar will be interactive with live demonstrations including coding a Metasploit Post module to show how to leverage this information.

Join TrustedSec’s Head of Research and noted security speaker, Carlos Perez (aka Darkoperator), for this innovative webinar.