Cybersecurity, learned like a practitioner.

24 learning paths · 398 modules live · every lesson written by someone who has shipped the control or run the engagement. Free to start.

24
Learning paths
398+
Live modules
0
You've completed
Free
Your tier
Browse the academy

Attacker Mindset — Active Directory · modules

Fragile-by-design AD, BloodHound graphs, ACL abuse, ADCS (ESC1-16), trusts, delegation, hybrid attacks — end-to-end AD compromise mindset.

20 results · Page 2/2
Filtering: Track: Attacker Mindset — Active Directory × Clear all →
Attacker Mindset — Active Directory Beginner Members

Module 1 · Why AD Is Fragile by Design

AD's defaults accumulated risk for 20 years — authenticated-read-everything, NTLM, RC4, backwards compat.

Apr 22, 2026 60 min Open
Attacker Mindset — Active Directory Intermediate Members

Module 2 · AD Enumeration — Seeing Everything

BloodHound, SharpHound, Impacket, CrackMapExec, PowerView. Any authenticated user sees the whole directory.

Apr 22, 2026 75 min Open
Attacker Mindset — Active Directory Intermediate Members

Module 3 · BloodHound — Graph Theory Meets AD

Edges, queries, custom Cypher. Why BloodHound changed offensive AD since 2017.

Apr 22, 2026 75 min Open
Attacker Mindset — Active Directory Advanced Members

Module 4 · AD ACL Abuse — Twenty Years of Accumulated Trust

GenericAll, GenericWrite, WriteDacl, AddMember, ForceChangePassword. Delegation sprawl = privilege escalation.

Apr 22, 2026 90 min Open
Attacker Mindset — Active Directory Intermediate Members

Module 5 · Group Policy Preferences — The Gift That Keeps Giving

cPassword in SYSVOL still found in 2026. MS14-025 didn't remove legacy files. Plus SYSVOL credential hunting.

Apr 22, 2026 75 min Open
Attacker Mindset — Active Directory Advanced Members

Module 6 · ADCS — ESC1 through ESC16

Active Directory Certificate Services attacks (Certified Pre-Owned). Template misconfigurations → domain compromise.

Apr 22, 2026 90 min Open
Attacker Mindset — Active Directory Advanced Members

Module 7 · Trusts — Legacy Merger Paths

Trust types, SIDHistory attacks, cross-forest paths. Mergers leave trust relationships with security debt.

Apr 22, 2026 90 min Open
Attacker Mindset — Active Directory Advanced Members

Module 8 · Kerberos Delegation Abuse

Unconstrained, constrained, RBCD. S4U2Self + S4U2Proxy, MachineAccountQuota, PetitPotam coercion.

Apr 22, 2026 90 min Open
Attacker Mindset — Active Directory Expert Members

Module 9 · Hybrid AD — On-Prem Meets Cloud

Entra Connect crown jewel, Golden SAML, Azure AD attacks, AZUREADSSOACC$ legacy, PRT theft.

Apr 22, 2026 120 min Open
Attacker Mindset — Active Directory Expert Members

Module 10 · AD Detection — What Good Looks Like

Event IDs, Sigma rules, Defender for Identity, Sentinel KQL queries. From generic SIEM to mature AD detection.

Apr 22, 2026 90 min Open
02 / Why learn here

Practitioners who've
shipped the controls.

Every module is written by someone who has built the defence or run the engagement. No repackaged tutorials, no generic theory.

Why learn here

01

Practitioner-written.

Each lesson is authored by someone who has shipped the control or run the engagement in production.

02

Quiz after every module.

20+ questions with explanations. 70%+ to mark complete. Unlimited retries.

03

Progress tracked.

Completions, scores and streaks saved automatically. Resume exactly where you left off.

04

India-priced.

Start free. ₹499/mo for intermediate. ₹4,999/yr for advanced. No hidden fees, ever.

Pick a path, get to work.

Browse all 398 modules View skill map