TL;DR If you only have access to a valid machine hash, you can leverage the Kerberos S4U2Self proxy for local privilege escalation, which allows reopening and expanding potential local-to-domain pivoting paths, such as SEImpersonate!
The post Abusing S4U2Self for Active Directory Pivoting appeared first on Black Hills Information Security, Inc..
Join the BHIS Discord discussion server: https://discord.gg/aHHh3u5 Weβre really excited to have a close member of our BHIS extended family, Tim Medin from Red Siege InfoSec, here for a webcast [β¦]
The post Webcast: Kerberos & Attacks 101 appeared first on Black Hills Information Security, Inc..
On this webcast, weβll guide you through an iterative process of building and deploying effective and practical Group Policy Objects (GPOs) that increase security posture. Slides for this webcast can [β¦]
The post Webcast: Group Policies That Kill Kill Chains appeared first on Black Hills Information Security, Inc..
Derek Banks // This post will walk through a technique to remotely run a Kerberoast attack over an established Meterpreter session to an Internet-based Ubuntu 16.04 C2 server and crack [β¦]
The post A Toast to Kerberoast appeared first on Black Hills Information Security, Inc..
Logan Lembke // Kerberos authentication can be daunting but is an important protocol to understand for any IT professional, and especially important in the field of information security. While you [β¦]
The post Whatβs trust among schoolchildren: Kerberos Authentication Explained appeared first on Black Hills Information Security, Inc..
Login