About Me

Cyber Security lover who likes to learn new technologies that are used for cyber security. For example:

• Reverse Engineering: IDA Pro, EDB, Binary Ninja, Ghidra
• Pen Testing: Implementing security against SQLi, XSS, brute forcing, insecure password storage, CSRF, directory traversal
• Networking: VLAN attacks, man-in-the-middle attacks, DNS spoofing, IP spoofing, packet sniffing
• Security Tools: Nmap, Wireshark

Contact



Author:

Supervisor:

Email:

Emil Cheteg - B.Sc. in Cybercrime & IT Security

Paul Barry

C00275877@setu.ie

Currently working at Netwatch as a Helpdesk Specialist and enjoying learning new skills every day while being part of the IT department.

The Project

This project focuses on creating a robust and secure Active Directory (AD) environment, both in physical and virtual (Hyper-V) setups. The structure of the AD is meticulously designed with a clear organization that includes regional and departmental segmentation, allowing for efficient management and scalability. Security is a top priority, with the implementation of security and distribution groups to regulate access and permissions throughout the network. Additionally, the AD environment is supported by a properly configured DNS and DHCP server, ensuring smooth and reliable network communication.

The infrastructure for this project spans across various components, including physical PCs, dedicated servers, Hyper-V virtual machines, and Ubuntu servers, all of which are fully integrated into the Active Directory. To ensure the highest level of security, a suite of open-source tools is utilized, including PingCastle for security audits, Wazuh for real-time monitoring and intrusion detection, and NinjaOne for endpoint management and device security. These tools are deployed to identify vulnerabilities, monitor the network for any suspicious activities, and ensure compliance with best security practices.

Furthermore, a comprehensive recovery and backup plan has been put in place, with multiple domain controllers set up to ensure redundancy and minimize the risk of data loss in the event of a failure. This redundancy allows for the seamless continuation of services without interruptions. To further enhance the security posture, penetration testing is conducted to identify potential weak points in the network, providing an additional layer of assurance that the system is resistant to attacks. The results of these tests are used to fortify the network and ensure its resilience against any emerging threats.

Thank You!

Thank you for exploring the "Securing Active Directory with Open Source Tools" showcase. I hope you found the content valuable and insightful. This platform is dedicated to enhancing your understanding of Active Directory security using powerful open-source tools. Whether you are a seasoned professional or just starting your cybersecurity journey, I am excited to share this knowledge with you. Thank you for your interest and trust in this project — I look forward to supporting your growth in securing Active Directory environments.