Carlos Garcia, Security Penetration Testing Lead in the Cyber Risk practice at Kroll, a division of Duff & Phelps, will lead a session on potential opportunities to explore Active Directory Forests to compromise a system as part of an intrusion test, and how to mitigate such risk.
Pentesting Active Directory Forests
The discussion will clarify the lack of knowledge about trust relationships between parent/child domains and forests and will reveal the risks, often unknown. The discussion will also explain different trust relationships within an organization and how an attacker can compromise the domains and forests involved. The different techniques and tools used to carry out such attacks are part of an intrusion test that will be shown in an eminently practical way.