ABUSING MICROSOFT KERBEROS & Active Directory

image

Black Hat HACK Showcase 2014

http://www.csoonline.com/article/2449321/security/10-disturbing-attacks-at-black-hat-usa-2014.html

Here’s the abstract for this session by researchers Alva “Skip” Duckwall and Benjamin Delpy: “Microsoft Active Directory uses Kerberos to handle authentication requests by default. However, if the domain is compromised, how bad can it really be? With the loss of the right hash, Kerberos can be completely compromised for years after the attacker gained access. Yes, it really is that bad.” They’ll demonstrate such a compromise in real-world conditions.

image

Posted from WordPress for Android

Advertisements