Risk is calculated at the intersection between threat, vulnerability and asset value. Active Directory was released with Windows 2000 and has been a foundational system for networks worldwide, as a result it is a key target for adversaries. Due to the age, lack of knowledge and attention and other factors, AD is riddled with vulnerabilities. This session will share key strategies for enhancing; hardening, preventing & detecting Active Directory attacks and provide 3 key steps towards proactive AD security.