Defenders must implement multi-layered controls to disrupt the system hacking lifecycle. 1. Identity & Access Management Enforce on all endpoints.
The course discusses taking advantage of unpatched software.
Operating systems do not store plaintext passwords. They store cryptographic hashes.