AD Security in the Enterprise presented at BSidesVancouver 2018

by Stephen Mathezer,

Summary : Active Directory in the enterprise is often managed by Windows specialists with limited security training and experience. AD presents a broad attack surface that is a major focus for attack by malware, ransomware, pen-testers and malicious actors. I believe that more risk can be mitigated by properly securing AD than by any other security measure. I will run through some of the most common attack vectors and simple steps you can take to make life difficult for attackers.