What started as a sleepy technology for efficiently configuring 1000s of Windows desktops and servers, has now become a gold mine for attackers looking to expose your security posture and leverage your GPOs as “malware delivery vehicles”.
In this webinar, Darren Mar-Elia (the “GPOGUY”) will summarize the nearly 4 years of research he’s done on the various ways attackers are exploiting GP. More importantly, he will break down the key steps you can take to defend your Group Policy environment, and therefore your Windows environment, from abuse.
During this workshop, we’ll demonstrate:
- How attackers use Group Policy for reconnaissance
- How attackers use Group Policy as a vector for malware
- How you can configure your AD and GPOs to prevent abuse
- Best practices for managing Group Policy with security in mind