BEGIN:VCALENDAR PRODID:-//vBulletin 6//EN VERSION:2.0 CALSCALE:GREGORIAN BEGIN:VEVENT UID:9437f1f6-8e39-49c4-bace-ee52588bcced DTSTAMP:20260619T145220Z SUMMARY:The Metasploit Framework - Spencer McIntyre DESCRIPTION:The Metasploit Framework\n\nFriday August 11\, 10:00 ā€“ 11:55\ , Committee Boardroom\, Forum\n\nSpencer McIntyre\n\nActive Directory is t he foundation of the infrastructure for many organizations. As of 2023\, M etasploit has added a wide range of new capabilities and attack workflows to support Active Directory exploitation. This DEF CON demonstration will cover new ways to enumerate information from LDAP\, attacking Active Direc tory Certificate Services (AD CS)\, leveraging Role Based Constrained Dele gation\, and using Kerberos authentication. The Kerberos features added in Metasploit 6.3 will be a focal point. The audience will learn how to exec ute multiple attack techniques\, including Pass-The-Ticket (PTT)\, forging Golden/Silver Tickets\, and authenticating with AD CS certificates. Final ly\, users will see how these attack primitives can be combined within Met asploit to streamline attack workflows with integrated ticket management. The demonstration will also highlight inspection capabilities that are use ful for decrypting traffic and tickets for debugging and research purposes .\n\nSpencer McIntyre is a Security Research Manager at Rapid7\, where he works on the Metasploit Framework. He has been contributing to Metasploit since 2010\, a committer since 2014\, and a core team member at Rapid7 sin ce 2019. Previously\, Spencer worked at a consulting firm working with cli ents from various industries\, including healthcare\, energy\, and manufac turing. He is an avid open source contributor and Python enthusiast.\n\nAu dience: Offense\n\n\nā€‹ URL:https://forum.defcon.org/node/246239 DTSTART:20230811T180000Z DTEND:20230811T195501Z LOCATION:Committee Boardroom\, Forum END:VEVENT END:VCALENDAR