CRTM
Altered Security

Certified Red Team Master

Expert Practical exam Pass: Passing $399

Advanced AD attacks — trust abuse, forest pivoting, EDR evasion.

Official Page
IssuerAltered Security
FormatPractical exam
Duration48 hours
Pass ScorePassing
Overview Syllabus (7) Tools (5) Cheat Sheets (0) Labs (1)
Full Syllabus
Multi-Forest Active Directory Attacks 20%
Cross-forest trust abuse, SID history, PAM trust, foreign group membership exploitation
Advanced Kerberos & Delegation 15%
RBCD abuse, Shadow Credentials, KrbRelayUp, cross-realm ticket forging
AD Certificate Services (ADCS) 15%
ESC1-ESC8 exploitation, CA compromise, certificate-based persistence
Azure AD & Hybrid Identity 15%
Azure AD Connect abuse, ADFS Golden SAML, hybrid identity attack paths
Advanced MSSQL Attacks 10%
MSSQL service account abuse, CLR assembly upload, chained linked server RCE
Advanced Persistence 15%
DCShadow, Skeleton Key, directory service restore mode, GPO abuse, AdminSDHolder
Detection Evasion & Hunting Awareness 10%
Living-off-the-land, log evasion, OPSEC-safe techniques, blueteam artifact avoidance