This talk is about a new tool that I built based on a methodology I developed for destroying Active Directory Attack Paths found by BloodHound.
This talk will cover the methodology and the various options that the script provide. All the features are aimed to help the Blue Team secure their Active Directory infrastructure. BlueHound is an open source project that will be made public at SecTor (October 21)
Mathieu Saulnier is a “Security Enthusiast” ©@h3xstream. He has held numerous positions as a consultant within several of Quebec’s largest institutions. Since 2011, he has been focused on putting in place SOC and has specialized in detection (Blue Team), content creation and mentorship. He worked as a "Senior Security Architect" and acted as "Adversary Detection Team Lead" and "Threat Hunting Team Lead" for one of Canada’s largest carrier for more than a decade and he is now "Sr Manager Incident Response" at Syntax. He loves to give talk and had the honor to do so at GoSec, BSidesCharm, NorthSec, BSidesLV, Defcon’s BTV and Derbycon
Level 0, Blue Team Village