This talk demonstrates Tools, Techniques and Procedures used to identify, replicate and exploit Active Directory and related weaknesses from the perspective of recent Google Cloud/Mandiant Red Teams. The talk also highlights recommendations on identifying and remediation. We'll also cover the provisioning of vulnerable lab environments in the Google Cloud Platform for practising offensive and defensive exercises.