Internship

Defend Against Cyber Attacks: Pass-the-Hash Attack

Description of assignment

Pass-the-Hash is a hacking technique that allows attackers to log into a server using stolen hash values. The goal of this internship assignment is to investigate the effects of a Privileged Account Management (PAM) solution against such attacks. We also want to map out the impact of different configurations of the PAM solution on protection against these attacks.

To achieve this, you will first set up an unsecured environment that you will later attack with a Pass-The-Hash attack.

Afterwards, you will install a PAM solution to secure the environment. The PAM solution to be used for this assignment is CyberArk PAM. CyberArk PAM is a leading solution in the world of Privileged Account Management, designed to enhance the security of organizations by managing and protecting privileged accounts and access rights. PAM plays a crucial role in minimizing cyber threats and protecting critical systems and sensitive data.

Objectives

The following deliverables will be requested:

  1. Set up an unsecured environment with an Active Directory (AD) and some test servers.
  2. Perform various Pass-the-Hash attacks on the unsecured environment to identify vulnerabilities.
  3. Implement CyberArk PAM as a security solution for the environment.
  4. Configure and optimize the PAM solution for the secured environment.
  5. Perform multiple Pass-the-Hash attacks on the secured environment with different PAM configurations.
  6. Compare the results of the attacks and the effects of various PAM configurations on the overall security of the environment.
Optional extensions

  1. Detecting active Pass-The-Hash attacks with the PAM solution.

Project methodology

ActWise uses agile project methodologies for its projects, such as XP and SCRUM. The project described above follows the same approach. These methodologies focus on ensuring the quality of software solutions. This is achieved by breaking the project into shorter iterations and through intensive communication within and outside the project team. The emphasis on intensive communication is an intrinsic feature of agile, resulting in thorough guidance during the internship period.

Ready to apply?

Take the next step in your career journey. Apply now and become part of our team.

School year

2024 - 2025

Contact person

Cindy Van den Hoecke

Internship Supervisor

Jelle Verreth

ActWise is the partner of choice for securing your identities and protecting what matters most within your company.
  • Privileged Management
  • Access Management
  • DevSecOps
  • Identity Security

Download the assignment

Interesting right? Download the assignment and get started on your path to success!

Apply now

Seize this unique opportunity to become part of our innovative team and take the next steps in your career. Fill in your details and discover how you can make a difference!

Workshop meeting