Penetration testing in Active Directory
| dc.contributor.advisor | Xenakis, Christos | |
| dc.contributor.advisor | Ξενάκης, Χρήστος | |
| dc.contributor.author | Fougias, Vasileios | |
| dc.contributor.author | Φούγιας, Βασίλειος | |
| dc.date.accessioned | 2025-09-17T08:57:33Z | |
| dc.date.available | 2025-09-17T08:57:33Z | |
| dc.date.issued | 2025 | |
| dc.identifier.uri | https://dione.lib.unipi.gr/xmlui/handle/unipi/18132 | |
| dc.format.extent | 167 | el |
| dc.language.iso | en | el |
| dc.publisher | Πανεπιστήμιο Πειραιώς | el |
| dc.rights | Αναφορά Δημιουργού-Μη Εμπορική Χρήση-Όχι Παράγωγα Έργα 3.0 Ελλάδα | * |
| dc.rights.uri | http://creativecommons.org/licenses/by-nc-nd/3.0/gr/ | * |
| dc.title | Penetration testing in Active Directory | el |
| dc.title.alternative | Δοκιμές ασφάλειας διείσδυσης σε περιβάλλον Active Directory | el |
| dc.type | Master Thesis | el |
| dc.contributor.department | Σχολή Τεχνολογιών Πληροφορικής και Επικοινωνιών. Τμήμα Ψηφιακών Συστημάτων | el |
| dc.description.abstractEN | Providing centralized authentication, authorization and resource control, Active Directory (AD) is the pillar of identity and access management in most enterprise Windows environments. AD is one of the main targets for adversaries seeking persistence, privilege escalation and domain-wide compromise due to its widespread and great integration into organizational infrastructure. By combining theoretical foundations with real-world attack scenarios, this project offers an in-depth analysis of Penetration Testing in Active Directory. The goal is to expose and leverage security flaws built into AD environments. It starts with describing AD's architecture and components, including important elements like Domains, Forests, Trusts, Group Policy Objects and Kerberos-based authentication, while also highlighting advanced threats involving Active Directory Certificate Services (ADCS) and identity abuse via certificate-based escalation. This project then focuses on real-world attack techniques including Password Spraying, Kerberoasting, AS-REP Roasting, Pass-the-Hash and Golden Ticket attacks. Analyzed and used in the simulated lab environment GOAD, are tools including Impacket, Certipy and CrackMapExec, to show how poor security practices and configuration errors can result in complete domain compromise. Apart from proving offensive capability, the aim is to underline mitigating strategies by mapping all approaches to the MITRE ATT&CK framework. This project is intended to equip cybersecurity professionals with the knowledge and tools required to evaluate, defend and harden Active Directory infrastructures against modern adversaries by bridging offensive and defensive points of view. | el |
| dc.contributor.master | Ασφάλεια Ψηφιακών Συστημάτων | el |
| dc.subject.keyword | Penetration testing | el |
| dc.subject.keyword | Active Directory penetration testing | el |
| dc.subject.keyword | Active Directory attack techniques | el |
| dc.subject.keyword | Active Directory security | el |
| dc.subject.keyword | Red teaming | el |
| dc.subject.keyword | GOAD MINILAB | el |
| dc.date.defense | 2025-08-28 |
Αρχεία σε αυτό το τεκμήριο
Αυτό το τεκμήριο εμφανίζεται στις ακόλουθες συλλογές
-
Τμήμα Ψηφιακών Συστημάτων
Department of Digital Systems
Εκτός από όπου διευκρινίζεται διαφορετικά, το τεκμήριο διανέμεται με την ακόλουθη άδεια:
Αναφορά Δημιουργού-Μη Εμπορική Χρήση-Όχι Παράγωγα Έργα 3.0 Ελλάδα
Αναφορά Δημιουργού-Μη Εμπορική Χρήση-Όχι Παράγωγα Έργα 3.0 Ελλάδα