How to learn Active Directoryā¦
Step 1. Setup your own lab. Setup laps, applocker, logon scripts, CA server, sccm, exchange, file shares etc the whole nine
Step 2. intentionally misconfigure it with tools like BadBlood and BadShares (I wrote this one) or just manually screw it up
Step 3. Find all the messed up stuff (PingCastle, scriptsentry (mine), locksmith, ADeleginator (me again), AppLocker Inspector (also me), PurpleKnight, etc etc). Included in this step is documenting the stuff you find and the root cause (makes good blogging/video content)
Step 3a. Try to exploit the bad stuff. This is optional but itās super fun and I believe itās helpful to know how threat actors may attack the stuff you find (also good content)
Step 4. Fix all the messed up stuff. Included in this step is documenting your process and the fix (again good content)
Step 5. Repeat until you can talk about XYZ without looking it up
Bonus - document your process and stuff youāre doing on social media. Write blogs, make videos, whatever. Post daily.
Do this consistently for 1 year without looking up and I bet youāll be surprised how far you go in just 12 months.
PS - This isnāt the only way. This is just what Iād recommend based on whatās worked for me and seeing others learn this way š