Active Directory & Enterprise Security, Methods to Secure Active Directory, Attack Methods & Effective Defenses, PowerShell, Tech Notes, & Geek Trivia…

Tag: ForgeKerberosTicket

Jul 15 2015

It’s All About Trust – Forging Kerberos Trust Tickets to Spoof Access across Active Directory Trusts

By Sean Metcalf in Microsoft Security, Technical Reading

In early 2015, I theorized that it’s possible to forge inter-realm (inter-trust) Kerberos tickets in a similar manner to how intra-domain TGTs (Golden Tickets) and TGSs (Silver Tickets) are forged. Around the same time, Benjamin Delpy updated Mimikatz to dump trust keys from a Domain Controller. Soon after, Mimikatz gained capability to forge inter-realm trust …

AskTGS, ForgeKerberosTicket, Inter-RealmKey, Kekeo, Kerberos, mimikatz, TGS, TGT, TrustKey, TrustPassword, TrustTicket
5 comments

Copyright

Content Disclaimer: This blog and its contents are provided "AS IS" with no warranties, and they confer no rights. Script samples are provided for informational purposes only and no guarantee is provided as to functionality or suitability. The views shared on this blog reflect those of the authors and do not represent the views of any companies mentioned. Content Ownership: All content posted here is intellectual work and under the current law, the poster owns the copyright of the article. Terms of Use Copyright © 2011 - 2020.

Made with by Graphene Themes.

Tag: ForgeKerberosTicket

It’s All About Trust – Forging Kerberos Trust Tickets to Spoof Access across Active Directory Trusts

Recent Posts

Trimarc Active Directory Security Services

Popular Posts

Categories

Recent Posts

Recent Comments

Archives

Categories

Meta

Copyright

Tag: ForgeKerberosTicket

It’s All About Trust – Forging Kerberos Trust Tickets to Spoof Access across Active Directory Trusts

Recent Posts

Trimarc Active Directory Security Services

Popular Posts

Categories

Tags

Recent Posts

Recent Comments

Archives

Categories

Meta

Copyright