cybersecurity
education
€ EUR
  • $ USD
  • € EUR
  • #course
  • #livevirtualclass

Advanced Active Directory Red Teaming

Live Virtual Class - Super Intensive Remote Training with Labs!
October 12, 2026, 9:00 am
Days
Hours
Min.
Sec.

During this 5-day course in 35 hours of super intensive training you will gain crucial cybersecurity knowledge and skills in terms of Advanced Active Directory Red Teaming. Moreover, you will be able to:

    • Get the highest quality and unique learning experience – the class is limited to 16 participants by default.
    • Get the opportunity to interact with our world-renowned Experts.
    • Go through CQURE’s custom lab exercises and practice them after the course.
    • Receive a lifelong certification after completing the course!

(9:00am – 4:00pm CEST/CET Monday to Friday)

Original price was: €4200.Current price is: €3600. (TAX incl.*)

*Tax exemption available for eligible businesses

Lowest price within 30 days - €2800 (net)

Why this course?

This intensive, hands-on training is designed for security professionals who need to master the art of attacking and defending complex Active Directory environments. Moving far beyond the basics, this course dives deep into the internal mechanics of Windows protocols (Kerberos, NTLM, RPC) to exploit subtle misconfigurations and architectural flaws.

Participants will simulate a full-scope Red Team engagement, starting from a non-privileged user to achieving total forest dominance. Crucially, this course addresses the modern defense landscape: students will learn Tradecraft and OPSEC techniques to operate “under the radar” (complex defense evasion techniques are not covered during this course). The curriculum also covers the most critical emerging threats, including ADCS abuse and pivoting into hybrid cloud environments (Microsoft Entra ID).

This intensive, hands-on training is designed for security professionals who need to master the art of attacking and defending complex Active Directory environments. Moving far beyond the basics, this course dives deep into the internal mechanics of Windows protocols (Kerberos, NTLM, RPC) to exploit subtle misconfigurations and architectural flaws.

Participants will simulate a full-scope Red Team engagement, starting from a non-privileged user to achieving total forest dominance. Crucially, this course addresses the modern defense landscape: students will learn Tradecraft and OPSEC techniques to operate “under the radar” (complex defense evasion techniques are not covered during this course). The curriculum also covers the most critical emerging threats, including ADCS abuse and pivoting into hybrid cloud environments (Microsoft Entra ID).

Pricing plan

We offer you pricing plan designed and adjusted to your specific needs and budget. Buy now or book your spot and pay later.

Course timeline

Course benefits

How our lessons look like

  • Key Takeaways
  • Lab
  • Course materials
  • Prerequisites
  • Certification

Key Takeaways

  • Deep Internal Knowledge: Understand how Kerberos, LDAP, and RPC work at a packet level to craft custom attacks.
  • Advanced Exploitation: Master Kerberos delegation attacks, ACL abuse, and AD CS vectors.
  • Lateral Movement Mastery: Move laterally without creating typical alarms using WMI, DCOM, and pass-the-hash/ticket techniques.
  • Hybrid Pivoting: Understand how to jump from on-prem AD to the Cloud and vice versa.

Lab

Extra Large Lab

Multi-Forest environment, including simulated workstations, servers,, multiple Domains and Forests and Domain Controllers, Certificate Authority (PKI), SQL Servers, SIEM, and simulated EDR agents.

Course materials

During the course you will be provided with a bunch of materials such as lab exercises, presentations, intriguing articles and useful tools to make your tasks a little bit easier!

Prerequisites

  • Solid experience with Windows operating systems and PowerShell.
  • Previous experience with basic Penetration Testing or AD Administration.
  • Understanding of TCP/IP networking and basic cryptography.
  • Note: This is not a beginner course. Students should be comfortable with a command-line interface.

Certification

After finishing the course, you will be granted a CQURE Certificate of Completion. Please note that after completing the course you will also be eligible for CPE points!

Course syllabus

This Live Virtual Class consists of 13 Modules in terms of Advanced Active Directory Red Teaming. They include essential theory combined with individual practice during the exercises as well as loads of hands-on tools and real-case scenarios.

      • Module 1: AD Internals & Protocols: Deep dive into NTLM, Kerberos, and LDAP queries.
      • Module 2: Modern Weaponization: Building payloads, C2 infrastructure setup, and delivery mechanisms.
      • Module 3: Defense Evasion 101: Understanding AMSI, ETW (Event Tracing for Windows), and basic PowerShell obfuscation.

Who is it for?

Audience

Senior Penetration Testers, Red Teamers, Senior SOC Analysts, Incident Responders, Security Architects, Senior System Administrators.

Platform and Technical Requirements

To participate in the course you need a stable internet connection. For best learning experience we also need you to have a webcam, headphones and a microphone. Open RDP port 3391 for the connection to the lab environment is needed as well. We will setup a secure Zoom classroom for every day of the course – we will send you a safe link to join the conference by e-mail.

Exercises

All exercises are based on Windows Server, Windows 10 and Kali Linux. This course is based on practical knowledge from tons of successful projects, many years of real-world experience and no mercy for misconfigurations or insecure solutions! Remember that the labs will stay online for an extra three weeks so you may practice even more after the
training is completed!

How to persuade your manager that this course is meaningful?

Investing in knowledge is one of the most worthy investment not only for us, but also for our environment. Learning new skills and insights in terms of cybersecurity may benefit with gaining awareness and as a result, may prevent falling a victim to cyber threats in the future.

Protects the Company

You will be the valuable element in regards to company’s safety – knowing about potential threats and ways of avoiding them may be incredibly useful in a daily company life.

Improves Employees skills

Not only your company will gain a specialist in terms of cybersecurity, but also you will unlock the door for expanding your skills horizon even further.

Boosts customer confidence

Completed course with personal certification may be the perfect advantage when it comes to business.

Helps comply with regulations

Knowledge is power, it helps navigate through complex regulatory landscapes. Keeping up-to-date with the latest cybersecurity regulations and standards ensures your company remains compliant, thus avoiding costly penalties and reputational damage.

Saves money in the long run

Who would have want to pay regularly for help in case of emergency data leakage in a company? It’s much better to educate the employees and prevent any cybersecurity risks.

Prepares for emerging threats

After our course, you will be educated in the possible threats and you will identify any suspicious activity online with ease.

Register now and learn from the best!

During this 5-day course in 35 hours super intensive training you will gain crucial cybersecurity knowledge and skills in terms of Advanced Active Directory Red Teaming. Moreover, you will be able to:

  • get the highest quality and unique learning experience
  • get the opportunity to interact with our world-renowned Experts
  • go through CQURE’s custom lab exercises and practice them after the course

Your Experts

This course is delivered by one of the greatest, world-renowned Cybersecurity Experts with practical knowledge from tons of successful projects, many years of real-world experience, great teaching skills and no mercy for misconfigurations or insecure solutions.

Jan

Marek

MVP, MCT, Microsoft Security Specialist

Jan Marek is a red teamer, security consultant and architect with more than 18 years of proven experience. His professional career includes training and speaking-related activities as well.

How can we help you?

Suggested searches

    Search history

      Popular searches:

      Not sure what course to look for?

      Mobile Newsletter Form