Trimarc CTO Sean Metcalf and Active Directory Security Assessment Lead Jake Hildreth presented at the 2024 BSides Charm. Their slides are available for download below (no registration required) and this page will be updated with the recordings of the talks when they are made available by Charm. Enjoy!
The Problem with Identity Security & How to Fix It
We have an Identity problem and not the kind you think of when you look in the mirror. Attacks have shifted from the perimeter to the endpoints and now attackers have their sights on identity. This talk explores the issues with Identity security specifically the two most popular identity systems, Active Directory & Azure AD ("Entra ID" for those who read Microsoft's press releases). These Identity security issues lead to compromise of systems that leverage the identity system for authentication/authorization.
Explored during this talk are the most common ways attackers compromise Identity systems, well-known breaches related to these issues (including the recent MGM breach), and the best ways to mitigate them. Attendees will leave this talk with a better understanding of attacker techniques to compromise Active Directory & Azure AD (Entra ID) as well as methods to best mitigate these attacks.
Protect Your Most Sensitive Users With This One Weird Trick!
The Protected Users Group (PUG) has existed in Windows Server since 2012 R2, but it's the undercover legend few have heard of. This talk shines a spotlight on the PUG's impressive protections for sensitive accounts and details how those protections thwart attacks. You'll learn the limitations of the group and how to safely begin using it to protect your most sensitive users!
Standstill No Sizzle PDF:
SUPER FUN ANIMATED SLIDES!