Recently, more and more people are thinking about taking the CTRP training to gain more insight into the Active Directory hacking techniques. Through this post you will discover if that certification is what you are looking for, including a comparison with other similar certifications out-there.

Exercise description: Generating a custom crypter, being possible to use any existing schema or create a new one for this exercise. Any programming language is allowed to perform this exercise.

Exercise description: Generating a polymorphic version of three shellcodes stored on Shell-Storm. The polymorphic versions cannot be larger than 150% of the existing shellcode.

Exercise description: Analyzing at least three shellcode samples generated using Metasploit for Linux/x86. Making use of GDB/Ndisasm/Libemu to dissect the functionality of the shellcodes analyzed.

Exercise description: Creating a custom encoding scheme similar to the insertion encoder technique. The PoC should make use of execve-stack as the shellcode to encode with the proposed schema.

Exercise description: Creating a working demo of the egg hunting technique. The egg hunter must allow to execute different payloads.