Red Teaming Workshop
2019-05-17, 13:30–16:30, Workshop 3

Red teaming workshop dedicated to improve participant capabilities during red team assessment

The purpose of the workshop is to improve students red teaming capabilities and stealthiness by covering the following topics:

project management:

  • define your goals
  • define your scope

Initial foothold:

  • efficiently performing phishing
  • evasion of URL reputation tool
  • payload generation
  • infection vectors
  • abusing of cloud solutions (office 365, etc.)
  • artifacts that should be avoided

lateral movement:

  • tools to use to avoid detection as much as possible
  • performing efficient recon
  • protocols to avoid
  • executables to avoid
  • escalating privileges on the network without using exploits
  • using Windows features against themselves

post exploitation (I have Domain Admin, then what?):

  • capturing credentials
  • achieving your pre-defined goals
  • searching huge organization networks for specific hosts
  • targeting the right users

The hands-on lab will cover all of these sections.

With more than 9 years of experience delivering Information Technology and Information Security services to various government and commercial clients such as a banks, nuclear industry and lay firms. Having the opportunity to perform RedTeam against complex and secured environment allowed him to develop a certain expertise that can be used to navigate through the target network without being detected. Since 2014 I'm also the proud owner of the RingZer0 Team website that have more than 25 000 members worldwide. The RingZer0 Team website is a hacking learning platform.