Using PowerUpSQL and goddi for Active Directory Information Gathering

Presented at Wild West Hackin' Fest 2018, Oct. 25, 2018, 2 p.m. (50 minutes)

Information gathering is an essential first step in penetration tests and red team engagements against an Active Directory (AD) environment. Tools like PowerView have been very popular in the past, but this talk will explore some alternative options. During this presentation, I’ll provide an overview of AD information gathering techniques that leverage functionality in PowerShell, Go, and SQL Server. These alternatives offer flexibility that can help you avoid detection on Windows endpoints during penetration tests and red team engagements. Additionally, examples of both PowerUpSQL and goddi will be shared to help you automate those unorthodox AD enumeration methods. This talk aims to familiarize pen testers, red teamers, and blue teamers with basic AD information gathering concepts and how they can be leveraged manually or through tools like PowerUpSQL and goddi.

Presenters:

  • Thomas Elling - NetSPI
    Thomas has a BS in computer science from Columbia University with a focus on software development and security. He has experience as an undergraduate researcher at the CU Network Security Lab. At NetSPI, Thomas primarily focuses on web application and network penetration testing. He also helps with research and tool development for the assessment team.

Links:

Similar Presentations: