DerbyCon this year was awesome as usual. I presented "The Infosec Revival: Why owning a typical network is so easy, and how to build a secure one." The video is here on Youtube:
Or you can check out the slides here:
The RDP video is here:
And the VM isolation video is here:
I should also give credit to pentestmonkey, Brav0Hax, and Trustwave SpiderLabs for their writing in the area and all of the many people who originally came up with these techniques.
http://pentestmonkey.net/uncategorized/from-local-admin-to-domain-admin
http://www.pentestgeek.com/2013/01/17/diamond-in-the-rough-get-da-before-launching-a-payload/
http://blog.spiderlabs.com/2012/12/my-5-top-ways-to-escalate-privileges.html
http://blog.spiderlabs.com/2013/09/top-five-ways-spiderlabs-got-domain-admin-on-your-internal-network.html
Also, F-Secure's “Making Life Difficult for Malware," and everybody who developed the effective security barriers.