applied security conferences and training: CanSecWest | PacSec |

Security Masters Dojo

Advanced and intermediate security training and technology enhancement for information security professionals.

CanSecWest: Security Masters Dojo Vancouver

Advanced Windows Tradecraft

Register for the March 14-15, 2020 (2-day course)

Nikhil Mittal


Penetration Tests and Red Team operations for secured environments need altered approaches. You cannot afford to touch disk, throw executables and use memory corruption exploits without the risk of being ineffective as a simulated adversary. To enhance offensive tactics and methodologies, using trusted OS resources is that way to go.

We will also Offensive PowerShell, C#, Jscript and VBScript for attacking a Windows network. This training is aimed towards attacking Windows network using Po and is based on real world penetration tests and Red Team engagements for highly secured environments. Some of the techniques (see the course content for details) used in the course:

The course is a mixture of demonstrations, exercises, hands-on and lecture. The training focuses more on methodology and techniques than tools. Attendees will get free one month access to a complete Windows environment after the training. Attendees would be able to write own scripts and customize existing ones for security testing after this training. This training aims to change how you test a Windows based environment.

PREREQUISITE WARNING Each class has prerequisites for software loads and a laptop is mandatory. These individual class guides will list material the students are expected have knowledge about coming in and software tools that need to be pre-installed before attending so you get the maximum benefit from the focused intermediate or advanced level course. Please pay particular attention to the prerequisites, as the material listed there will not be reviewed in the courses, and will be necessary to get the maximum benefit out of these educational programs.

Course Outline:

Day1 - PowerShell essentials and getting a foothold Day 2 - Post exploitation and lateral movement

Attendees will get

  1. One month access to the online lab, solutions to exercises and Lab manual.
  2. The attendees would learn a powerful attack method which could be applied from day one after the training.
  3. The attendees would understand, by practicing, how to use PowerShell, C#, Jscript and VBScript for red team operations without relying on any framework.
  4. The attendees would learn how PowerShell reduces dependence on existing frameworks yet seamlessly integrates with them.


System Requirements

System with 4 GB RAM and ability to install OpenVPN client and RDP to Windows boxes.