Subscribe to the CyberThreatPOV Podcast

Episode 184: Active Directory Isn’t Dead. It’s Just Undefended

Active Directory isn’t dead—it’s still powering the majority of organizations, and security risks are as critical as ever. In this episode, we dig into the real facts, common attack paths, and actionable defense strategies.

  • Why 86% of organizations still rely on Active Directory workloads
  • How tech debt and legacy infrastructure make AD migration difficult
  • The realities and pitfalls of authentication policies and policy silos
  • Tools for mapping, detecting, and prioritizing AD attack paths (Bloodhound, Pingcastle, Purple Knight, Locksmith, adeleg)
  • Why remediation and retesting are crucial steps—and where teams go wrong

Resources mentioned:

– Spencer’s ContinuumCon Workshop (Fri. June 12, 10:30am PT / 1:30pm ET): https://continuumcon.com/schedule/
– Hybrid Identity Protection Podcast (Semperis): https://www.semperis.com/hybrid-identity-protection-podcast/
– Bloodhound CE: https://github.com/SpecterOps/BloodHound
– PingCastle: https://www.pingcastle.com
– Purple Knight: https://www.purple-knight.com
– Locksmith: https://github.com/TrimarcJake/Locksmith
– offsec.blog | securit360.com

Blog: https://offsec.blog/
Youtube: https://www.youtube.com/@cyberthreatpov
Twitter: https://x.com/cyberthreatpov

Follow Spencer on social ⬇
Spencer’s Links: https://spenceralessi.com

Work with Us: https://securit360.com | Find vulnerabilities that matter, learn about how we do internal pentesting here.