Home > Roadmap > Active Directory Security > Learning Modules

🏢 Active Directory Security Learning Modules

Master Active Directory Security through comprehensive, hands-on learning modules designed for progressive skill development

Advanced to Expert

Quick Links

Module 1 · Module 2 · Module 3 · Module 4 · Module 5 · Hands-on Labs · Open Full Lab · Attack Techniques · Defense & Hardening

Learning Path Overview

Our Active Directory Security learning path is structured into progressive modules, each building upon the previous knowledge. Each module includes theoretical concepts, practical exercises, and real-world attack scenarios.

🧪 Recommended Lab Build: GOAD (Game Of Active Directory)

Build a full, vulnerable AD lab to practice these modules end-to-end.

📊 Your Learning Progress

Module 1 Completed
4/4 Lessons Complete
Module 2 Completed
4/4 Lessons Complete
Module 3 Completed
4/4 Lessons Complete
Module 4 Completed
4/4 Lessons Complete
Module 5 Completed
4/4 Lessons Complete
Hands-on Labs Available
6 Comprehensive Exercises

🎯 Learning Modules

Module 1: Active Directory Fundamentals

Intermediate 4-6 hours ✅ Complete

Build a solid foundation in Active Directory architecture, protocols, and comprehensive enumeration techniques.

  • Active Directory Architecture & NTDS.dit
  • LDAP Protocol Deep Dive
  • Group Policy Security
  • Active Directory Security Assessment

📚 Resources

Start Module 1 Take Assessment Next: Module 2 →

Module 2: Kerberos Authentication

Advanced 6-8 hours ✅ Complete

Master advanced Kerberos authentication attacks including Golden/Silver tickets, Kerberoasting, and delegation abuse.

  • Kerberos Protocol Fundamentals
  • Golden & Silver Ticket Attacks
  • Kerberoasting & AS-REP Roasting
  • Delegation Abuse & S4U Attacks

📚 Resources

Start Module 2 Take Assessment Next: Module 3 →

Module 3: Advanced AD Attacks

Advanced 8-10 hours ✅ Complete

Attack chaining, advanced Kerberos abuses, RBCD, and domain takeover scenarios.

  • AS-REP Roasting
  • Kerberoasting Chains
  • Resource-Based Constrained Delegation
  • Full Domain Takeover Paths

📚 Resources

Start Module 3 Take Assessment Next: Module 4 →

Module 4: Golden and Silver Tickets

Expert 10-12 hours ✅ Complete

Master advanced ticket-based attacks including Golden Ticket, Silver Ticket, and Skeleton Key attacks.

  • Kerberos Ticket Structure
  • Golden Ticket Attack
  • Silver Ticket Attack
  • Skeleton Key Attack

📚 Resources

Start Module 4 Take Assessment Next: Module 5 →

Module 5: Advanced Domain Takeover

Expert 12-15 hours ✅ Complete

Learn the most advanced techniques for complete domain compromise including DCSync, DCShadow, and ADCS attacks.

  • DCSync Attack
  • DCShadow Attack
  • ADCS Certificate Attacks
  • Domain Controller Compromise

📚 Resources

Start Module 5 Take Assessment Go to Labs →

🧪 Hands-On Lab Exercises

Advanced 8-12 hours ✅ Available

Comprehensive hands-on exercises covering Active Directory enumeration, exploitation, and defense techniques.

  • Active Directory Enumeration
  • Kerberos Authentication Attacks
  • Kerberoasting & AS-REP Roasting
  • Delegation Abuse & S4U Attacks
  • AD Defense Implementation
  • Advanced Attack Simulation

📚 Resources

Start Lab Exercises External Labs

🔗 Related Learning Paths

Windows Security

Deep dive into Windows operating system security and exploitation

Explore Windows Security →

Red Team Operations

Advanced red team techniques and methodologies

Explore Red Team Ops →

Privilege Escalation

Windows privilege escalation techniques and methods

Explore PrivEsc →

🛠️ Essential Tools & Platforms

Enumeration Tools

Attack Tools

Research Platforms

Learning Platforms

📧 Stay Updated with New Modules

Get notified when we add new learning modules and expert content!

← Back to Active Directory Security Roadmap ← Back to All Roadmaps