Simulating the golden ticket and silver ticket attacks and detecting them using SIEM

  • Date 10/08/2022
  • Time 13:00
  • Location Virtual

Why attend this webinar?

Golden and silver ticket attacks are archaic, yet powerful. These attacks, once launched in any network, provide unrestricted access to user accounts and resources, ultimately exposing sensitive information.

A Golden Ticket attack gives attackers complete control over an organization’s Active Directory (AD). Using a silver ticket, an attacker can create multiple ticket-granting service (TGS) tickets for a specific service without communicating with a domain controller (DC) in a network.

The consequences of these attacks are incredibly damaging. Total cleanup and resetting the domain controller’s password will help, but the ambiguity of backdoor entries will persist long after you eradicate these attacks from your network. So, join this webinar to learn the nuances of these attacks and their Indicators of Compromise (IoCs) to detect them at their nascent stages.

Here’s what we’ll discuss in this webinar:

  • Golden ticket attack
    • Attack demonstration
    • Analytics in SIEM to detect the golden ticket attack
    • Remediating the golden ticket attack
  • Silver ticket attack
    • Attack demonstration
    • Analytics in SIEM to detect the silver ticket attack
    • Remediating the silver ticket attack


Product expert