Hacking techniques for AD: “state of the art” (but scary!) with possible mitigation (when possible) + a few new methods…

https://adsecurity.org/wp-content/uploads/2015/08/DEFCON23-2015-Metcalf-RedvsBlue-ADAttackAndDefense-Final.pdf

Securing AD:

https://digital-forensics.sans.org/blog/2013/06/20/overview-of-microsofts-best-practices-for-securing-active-directory

http://video.ch9.ms/sessions/teched/na/2014/DCIM-B213.pptx

MS white-paper best practices to secure AD: http://aka.ms/bpsadtrd

Authentication mechanism assurance: https://technet.microsoft.com/en-us/library/dd378897.aspx