Red Team Training - MITRE ATTACK

A red team or team red are a group that plays the role of an enemy or competitor to provide security feedback from that perspective. Red teams are used in many fields, especially in cybersecurity, airport security, law enforcement, the military etc

Buy $1,500.00

Course curriculum

1. 1.introduction whats new in this section
2. 2.labs for penetration testing
3. 3.correct apporach to start pentesting on host
4. 4.Lab requirement
5. 5.File Transfer techniques
6. 6.complete smb enumeration and pentesting
7. 7.student task
8. 8.Complete approach to Network pentesting
9. 9.student task
10. 10.All about web content discovery
11. 11.Hands on approach
12. 12.student task
13. 13.Mastering WinRM - A Complete Guide to Windows Remote Management in Penetration Testing
14. 14.Hands on Hacking a complete Network
15. 15.Gaining Access into network through ms sql
16. 16.Credential Dumping And Pivoting
17. 17.Password Spray Attack - Initial Access
18. 18.Complete Path exploitation (Making our own vulnerable lab and exploiting it)
19. 19.hands on Real world approach
20. 20.Hands on real world approach and updates
1. what is red teaming
2. installation
3. DOWNLOAD LAB
1. 1.What is recon
2. 2.what is domain enumeration
3. 3.Domain enumeration using amass
4. 4.Domain enumeration using amass on live websites
5. 5.Subdomain Bruteforce using Amass
6. 6.Some important tips of scanning using Amass in Infrastructure
7. 7.ASN scanning
8. 8.How to Perform Reverse whois lookup
1. 1.Sinper for recon
2. 2.What is Active and passive scanning
3. 3.How to Perform Active and Passive scanning using sniper
4. 4.How to Analyze sniper Results
5. 5.Performing Passive scanning and hunting injection parameter using sniper
6. 6
7. 7.Harvester for Recon
8. 8.Installing Harvester
9. 9.Using Harvester to hunt sub domains ip ranges and admin panels
10. 10.Brute domains using Harvester
11. 11.Dns Loockup using Harvester
12. 12
1. 1.Information Gathering Using Recon-ng
2. 2.Setting up workspace in recon-ng
3. 3.Installing modules and using it
4. 4.Deep drive in recon-ng
5. 5.Importing api keys
6. 6.shodan in recon-ng
7. 7.shodan in recon-ng-2
8. 8.Webinterface of recon-ng
1. 1.Recon using Maltego
2. 2.Gathering complete information of organization
3. 3.Hunting Leaked Credentials
4. 4.Live Hunting Leaked credentials of real organizations
1. 1.What is Nikto
2. 2.Setting up lab
3. 3.Scanning sites using Nikto
4. 4.Scanning Multiple hosts using Nikto
5. 5.Scanning services and hunting Vulnerability
6. 6.Plugins in Nikto
1. 1.Recon using Shodan
2. 2.What is shodan and why we are using it
3. 3.What is shodan and why we are using it-2
4. 4.Hunting Cameras printers ips of specific organization
5. 5.Shodan cli
6. 6.shodan dorks
1. 1.spider for recon
2. 2.what we are learning
3. 3.Hunting emails phone numbers
4. 4.gathering Information about employees
5. 5.Using Command line interface
6. 6.osint framework
7. 7.Hunting through Usernames
1. 1.Lab setup
2. 2.Lab setup 2
3. 3.mitre framework
4. 4.using metasploit
5. 5.Listen connection
6. 6.Generating python payloads
1. intial access
2. 1.Lucky strike what we are learning here
3. 2.Configure lucky strike
4. 3.Generate Malicious document
5. 4.Generate Malicious document-2
6. 5.Injecting in xls
7. 6.Hands on real world attack
8. 7.Listening for connection
9. cmd class 2
1. 1.why we are using go phish
2. 2.Configure gophish in right way
3. 3.setting up victim machine to test our attack
4. 4.Creating first Phishing campaigns
5. 5.setting up smtp ,spoofing email,and phishing page
6. 6.analyzing Phishing results
7. 7.sending malicious files through gophish
1. 1.Introduction to sqlmap
2. 2.why we are using sqlmap
3. 3.Exploiting using sqlmap
4. 4.Using cookies dumping usernames and passwords
5. 5.automation way to find vulnerable Parameters
6. 6.Hardware which are useful to perform red teaming organization
1. 1.Execution using unicorn
2. 2.setting up unicorn
3. 3.Generating Malicious scripts using unicorn
4. 4.generating macros using unicorn
5. 5.Generating malicious hta
6. 6.generating Malicious docx
7. 7.How to bypass defender
1. 1.what is donut and why we are using it
2. 2.Installing and learning about donut
3. 3
4. 4.Adding encryptions in our payload using donut
5. 5
1. 1.Introduction to persistence
2. 2.How to install empire
3. 3.Setting up client and server, generating malicious bat files, listening for connection, interacting with victim machine
4. 4.How to Perform privilege escalation using empire
5. 5.Installing starkiller (gui of empire)
6. 6.Deep-drive of starkiller modules - persistence, privilege escalation
7. 7.Performing Persistence using registry key
8. 8.Performing persistence using schedule task
9. 9.class on student demand
1. 1.what is impacket
2. 2.Persistence in compromised server
3. 3.setting up impacket
4. 4. Persistence using wmiexec
5. 5.Persistence using wmipersist
6. 6.Checking wmipersist working method
7. 7.Removing Persistence from target machine
8. 8.How to dump user credentials using secretsdump
1. 1.How to Perform privilage Escalation using rubeus
2. 2.what we are covering here
3. 3.Building Rubeus
4. 4.Right way to use Rubeus in Real world
5. 5.Kerberost attack using Rubeus
6. 6.AS-REP roasting attack using Rubeus
7. 7.Cracking Kerberost and AS-REP Hashes
1. 1.what is sharpup and how to Perform Privilege escalation using sharpup
2. 2.Building sharpup and running Vulnerability scan
3. 3.Taking Advantage of Always Install Elevated Permission to Perform Privilege Escalation
4. 4.How this Vulnerability occurs and how to fix it
1. 1.About Defense Evision
2. 2.How to Install invoke-obfuscation in linux
3. 3.Using different obfuscating Techniques to Bypass AVs
4. 4.Live Bypassing AV
1. 1.Why we are using Proxychain
2. 2.Using Proxychain while scanning
1. 1.what is Mimikatz
2. 2.How to Dump Passwords from system memory using Mimikatz
3. 3.Dumping Password(LSASS)
4. 4.Dumping Credentials From Browser using Mimikatz
5. 5.Changing Password using Ntlm hash
1. 1.Why we are using Hashcat
2. 2.Learning About Hashcat modes and cracking hashes
3. 3.How to Perform Advance dictionary Attack
4. 4.Important note
5. 5.Cracking Password Protected Pdf
6. 6.Cracking Password Protected docx
1. 1.Introduction to Responder and why we are using it
2. 2.How LLMNR_NBT poisoning work
3. 3.Capturing (LLMNR)Ntlmv2 hashes
4. 4.Cracking Ntlmv2 using johntheripper
5. 5.How to Perform this Attack in real world red team assessment
1. 1.What we are learning here
2. 2.Learning About Rules
3. 3.Dumping Password using PwnDump
4. 4.Learning About gs kc kps
5. 5.Learning About hash formats
6. 6.Learning about shadow file Hashes
1. 1.Intoduction to hydra and we are learning here
2. 2.BruteForce Attack using Hydra
3. 3.Using Hydra in a Advance way
4. 4.How to Perform password spraying using Hydra
1. 1.What we are Learning here
2. 2.Compile Lazagne (Fix all issues)
3. 3.Dumping Credentials From Browsers
4. 4.Dumping Rdp ftp vnc credentials
5. 5.Dumping Credentials of Applications
6. 6.Bypassing AVs
1. 1.What we are Learning here
2. 2.What is Bloodhound and how its work
3. 3.Installing BloodHound
4. 4.Executing sharphound in target
5. 5.Analyzing Results
1. 1.What is Seatbelt why we are using it
2. 2.Compile Seatbelt
3. 3.Enumeration using seatbelt(deep drive)
4. 4.Analyzing Results
5. 5.Using seatbelt remotly
1. 1.What we are Learning Here
2. 2.Discover Wireless Networks
3. 3.sniffing wifi
4. 4.Sniffing Bluethooth
5. 5.Capturing and analyzing data
6. 6.Sniffing Using sdr
1. 1.what we are learning here
2. 2.Gathering Information of Active directory
3. 3.Checking policies
4. 4.Performing Kerberosting Attack using Adrecon
1. AD PT(IMPORTANT NOTICE)
2. 1.What we are learning here
3. 2.what is pass the hash attack and how to Perform it
4. 3.Learning About Pass the hash attack how its work
5. 4.What is Pass the ticket Attack
6. 5.How to Perform Pass the Ticket Attack
7. 6.wait for Active directory section
1. 1.What we are Learning here
2. 2.setting up powersploit and capturing screenshots
3. 3.Capturing keystokes and audio spying on logins
4. 4.Finding Sensitive files in Network
1. 1.What we are Learning here
2. 2.Auditing Ms-sql
3. 3.Analyzing Results and checking for username passwords emails etc
4. 4.Learning More about Poweupsql
1. 1.What we are Learning here
2. 2.setting Covenant using docker
3. 3.Generating Malicious scripts using Covenant
4. 4.Dumping Credentials and gathering users
1. 1.What we are Learning here
2. 2.setting up empire
3. 3.Enable Rdp in your victim system
4. 4.Performing non standard port attack
5. 5.Deep drive on empire modules (Password spraying,mimikatz,ntlm,kerberost etc)
1. 1.What we are learning here
2. 2.Dumping sensitive information from target
3. 3.Dumping Senistive information from target -2
4. 4.Encrypting sensitive file before download to avoid alert
5. 5.Process of Decrypting downloaded file
1. 1.Introduction to dos and ddos attack
2. 2.Performing Dos attack and analyzing it
3. 3.Performing ddos attack
4. 4.Avoid Dos and ddos attack
1. 1.Introduction Active Directory penetration testing
2. 2.How to Perform Active Directory in real world dealing with clients
3. 3.What is LLMNR poisoning how does it work
4. 4.Detail class on Responder how you need to use it in real world
5. 5.Cracking Hashes and selecting right rig
6. 6.What is smb relay attack and how its happen
7. 7.How to Check for smb Relay Vulnerability
8. 8.Performing smb relay attack
9. 9.Performing smb relay attack-2
10. 10.Authentication using Psexec
11. 11.What is ipv6 why systems use this
12. 12.Learning About Dns takeover
13. 13.Performing Attack on ipv6-1
14. 14.Performing Attack on ipv6-2
15. 15.Adding users and computers in active directory(ntlmrelay and kerberos delegation)
16. 16.Adding users and computers in active directory(ntlmrelay and kerberos delegation)-2
17. 17.Important notice
18. 18.Active directory enumeration
19. 19.Deep Drive using Powerview(AD enumeration)
20. 20.simple words
21. 21.How we can compromise Active directory
22. 22.Explanation about Pass the Hash Attack why we perform it
23. 23.What is Pass the password attack
24. 24.How to Perform pass the password attack and password spraying using crackmapexec
25. 25.Targeting Local Administrators
26. 26.Deep drive Crackmapexec
27. 27.Performing Pass the Hash Attack and learning about ntlm hashes
28. 28.What is Token impersonation (P.E)
29. 29.How to Perform Token Impersonation(Privilege Escalation)
30. 30.What is Kerberos attack how kerberos authentication works and detecting Kerberos Attack
31. 31.Dumping Kerberos Hashes
32. 32.Cracking kerberos Hashes using Hashcat
33. 33.Learning About ntlm and ntlmv2
34. 34.How to Dump clear text Password (registry)
35. 35.What is Golden Ticket Attack
36. 36.How to Perform Golden Ticket Attack (Persistence)
37. 37.Deep drive about identifiers and Active Directory cheetsheet
1. 1.Introduction
2. 2.Difference between Automated Penetration Testing and Manual Penetration Testing
3. 3.Installing kali linux
4. 4.How its work
5. 5.What is Metasploit
6. 6.About Metasploit Payloads and Modules
7. 7.Architecture of Metasploit
8. 8.Metasploit Database
9. 9.Metasploit Workspace
10. 10.Fundamentals of metasploit
11. 11.Filter Payloads Exploits auxiliary etc
12. 13.Complete Course of Windows Hacking
13. 14.Ethical hacking-windows penetration training
14. 15.Database Backend Commands and how to use
15. 12.Scanning Connected clients and Grabbing OS Details
16. 16.Peforming Nmap scanning in metasploit
17. 17.Performing Portscanning,Enumeration and Bruteforce using Metasploit
18. 18.Web-Enumeration and finding Vulnerabilities using Metasploit
19. 19.Metasploit Client side Attack
20. 20.MsFvenom Payloads And Encoders to bypass security
21. 21.Injecting Msfvenom Payload to Avoid Av Detections
22. 22.Testing Payload and Creating RC files
23. 23.Nessus Installation for Vulnerabilty scanning
24. 24.Performing Vulnerability Assessment Using Nessus
25. 25.Exploiting MySQl server
26. 26.Exploiting ManageEngine
27. 27.Exploiting Elastic search
28. 28.Learning Meterpreter shell Commands
29. 29.Post Exploitation Modules
30. 30.Testing Privilege Escalation Vulnerabilties on windows
31. 31.Token Impersonation attack
32. 32.Windows Persistence
33. 33.MIMIkatz-Credential Dumping from Memory
34. 34.Pass The Hash Attack
35. 35.Linux Penetration testing
36. 36.Hacking Linux based system
37. 37.Host Discovery and Vulnerabilty scanning using nessus
38. 38.Exploiting Linux webserver
39. 39.Exploiting Drupal
40. 40.Exploiting PHPMYADMIN
41. 41.linux Enumeration and post exploitation Modules
42. 42.Privilege Escalation in linux
43. 43.Persistence in Linux
1. 1.Introduction
2. 2.Lab overview
3. 3.Performing Red Team Operations
4. 4.Important steps Before Performing Pivoting
5. 5.Performing Pivoting-1
6. 6.Performing Pivoting-2
7. 7.Performing Pivoting-3
8. 8.Internal Red Team Operations
9. 9.Privilege Escalation
10. 10.Credential Dumping And PasstheHash Attack
11. 11.Lateral Movement
12. 12.Exploiting Active Directory
13. 13.Kerberoasting Attack
14. 14.Silver Ticket Attack
15. 15.Golden Ticket attack and (persistence)
16. 16.Congrates and Updates
1. 1.Note
2. 2.Introduction to Active Directory
3. 3.introduction to Active directory -2
4. 4.How Active Directory works
5. 5.Active Directory Structure
6. 6.What is Tree and forest
7. 7.Difference between the Tree and Forest
8. 8.Installing Attacker machine
9. 9.Installing Windows server
10. 10.Setting up Active Directory
11. 11.Setting up Connected clients
12. 12.Adding Local adminstrators and users in Active directory
13. 13.Joining Computers in Active Directory
14. 14.Enumeration
15. 15.Basic scanning on Active directory
16. 16.Difference Between Whitebox blackbox and grey box Pentesting
17. 17.Difference Between Penetration testing and red teaming
18. 18.Enumerating Active directory users Administrator computers through (RPC)
19. 19.LDAP enumeration (Dump Users Computers Groups)
20. 20.SMB enumeration and learning How Attacker spread rats or any Malicious files in network
21. 21.Enum4Linux
22. 22.Kerberos Enumeration
23. 23.Kerberos Enumeration - Password spraying
24. 24.RDP enumeration
25. 25.RDP Enumeration - Bruteforce Attack,userspray
26. 26.Active directory enumeration
27. 27.Enumeration using Powerview
28. 28.Enumerating users Administrator and computers
29. 29.initial access
30. 30.Llmr poising smb relay arp spoofing(Network base attacks)
31. 31.Stealing RDP credentials
32. 32.Complete concept of users
33. 33.what is privilege escalation and how its work
34. 34.Hands-on windows Privilege escalation
35. 35.What is unquoted service path - P.E
36. 36.Deep drive and manual Privilege Escalation (unquoted service )
37. 36.what is AlwaysInstallElevated
38. 37.Privilege Escalation(AlwaysInstallElevated)
39. 38.weak permissions in windows
40. 39.Privilege Escalation through Binpath
41. 40.Finding Misconfigurations and vurnerable service in windows which leads to Privilege Escalation
42. 41.Pivoting - Defense Evesion
43. 41.Pivoting
44. 42,Pivoting and port forwarding
45. 43.Pivoting - metasploit
46. 44.explaination about remote and local port forwarding
1. 1.Intoduction to updated section
2. 2.Vulnerability Assessment and Penetration Testing
3. 3.Red Team Engagements
4. 4. Engagement structure
5. 5.Red team Engagements
6. 6.Windows Penetration testing - red team perspective
7. 7.ROE - NDA Documentations
8. 8.Windows Penetration testing - Penetration testing perspective
9. red team
10. 9.windows penetration testing - client side attack
11. 10.windows penetration testing - url file attack
12. 11.Active directory Penetration testing (oscp) - 1
13. 12.Active directory Penetration testing (oscp) - 2
14. 13.windows penetration testing - Red team perspective
1. 1.why we need to learn soc
2. 2.levels in soc
3. 3.what is soc
4. 4.different type of soc
5. 5.How soc work
6. 6.Blue team tools
7. 7.cyber attacks and cybersecurity
8. 8.remote worker security
9. 9.How to secure remote worker security
10. 10.Ransomware attack
11. 11.3rd party risk and security
12. 12.cloud risks and security
13. 13.iot risks and threats
14. 14.Vulnerability
15. 15.Threat intelligence
16. 16.CIA triad
17. 17.Confidentiality, integrity,Availability
18. 18.About SIEM and logs
19. 19.why SIEM is important
20. 20.How rules are created
21. 21.Splunk Basics

About this course

$1,500.00
410 lessons
76.5 hours of video content

Discover your potential, starting today

Enroll today

Penetration testing For Red Teamers v3

Introduction

Reconnaissance ID: TA0043

SECTION 2

SECTION 3

SECTION 4

SECTION 5

SECTION 6

SECTION 7

Resource Development ID: TA0042

Initial Access ID: TA0001

SECTION 2

SECTION 3

EXECUTION - TA0002

SECTION 2

PERSISTENCE - TA0003

SECTION 2

Privilege Escalation ID: TA0004

SECTION 2

Defense Evasion ID: TA0005

SECTION 2

Credential Access ID: TA0006

SECTION 2

SECTION 3

SECTION 4

SECTION 5

SECTION 6

Discovery ID: TA0007

SECTION 2

SECTION 3

SECTION 4

Lateral Movement ID: TA0008

Collection ID: TA0009

SECTION 2

Command and Control ID: TA0011

SECTION 2

Exfiltration ID: TA0010

Impact ID: TA0040

Active Directory Penetration testing For Red-Teamer

COMPLETE COURSE OF METASPLOIT FOR RED-TEAMERS AND PENTESTER

Internal And External RED-TEAM operations

MASTER IN ACTIVE DIRECTORY PENETRATION TESTING

REAL WORLD RED TEAMING

Blue Team for Red teamers

About this course