Description of assignment
Pass-the-Hash is a hacking technique that allows attackers to log into a server using stolen hash values. The goal of this internship assignment is to investigate the effects of a Privileged Account Management (PAM) solution against such attacks. We also want to map out the impact of different configurations of the PAM solution on protection against these attacks.
To achieve this, you will first set up an unsecured environment that you will later attack with a Pass-The-Hash attack.
Afterwards, you will install a PAM solution to secure the environment. The PAM solution to be used for this assignment is CyberArk PAM. CyberArk PAM is a leading solution in the world of Privileged Account Management, designed to enhance the security of organizations by managing and protecting privileged accounts and access rights. PAM plays a crucial role in minimizing cyber threats and protecting critical systems and sensitive data.
Objectives
The following deliverables will be requested:
- Set up an unsecured environment with an Active Directory (AD) and some test servers.
- Perform various Pass-the-Hash attacks on the unsecured environment to identify vulnerabilities.
- Implement CyberArk PAM as a security solution for the environment.
- Configure and optimize the PAM solution for the secured environment.
- Perform multiple Pass-the-Hash attacks on the secured environment with different PAM configurations.
- Compare the results of the attacks and the effects of various PAM configurations on the overall security of the environment.
Optional extensions
- Detecting active Pass-The-Hash attacks with the PAM solution.
Project methodology
ActWise uses agile project methodologies for its projects, such as XP and SCRUM. The project described above follows the same approach. These methodologies focus on ensuring the quality of software solutions. This is achieved by breaking the project into shorter iterations and through intensive communication within and outside the project team. The emphasis on intensive communication is an intrinsic feature of agile, resulting in thorough guidance during the internship period.