Active Directory & Enterprise Security, Methods to Secure Active Directory, Attack Methods & Effective Defenses, PowerShell, Tech Notes, & Geek Trivia…

Tag: MSSQL

Dec 31 2015

Cracking Kerberos TGS Tickets Using Kerberoast – Exploiting Kerberos to Compromise the Active Directory Domain

By Sean Metcalf in ActiveDirectorySecurity, Microsoft Security, Technical Reference

Microsoft’s Kerberos implementation in Active Directory has been targeted over the past couple of years by security researchers and attackers alike. The issues are primarily related to the legacy support in Kerberos when Active Directory was released in the year 2000 with Windows Server 2000. This legacy support is enabled when using Kerberos RC4 encryption …

ActiveDirectory, CrackPasswords, CrackServiceAccountPassword, CrackTGS, DiamondPAC, DomainController, ForgedPAC, GoldenTicket, Kerberoast, Kerberos, KerberosSilverTicket, mimikatz, MS14068, MSSQL, PowerShell, Python, RC4HMACMD5, RC4_HMAC_MD5, ServicePrincipalName, SilverTicket, SkeletonKey, SPN, SPNScanning, SQL, TGS, TGSCracker, TGT
1 comment

Sep 15 2014

Active Directory Pentest Recon Part 1: SPN Scanning aka Mining Kerberos Service Principal Names

By Sean Metcalf in Microsoft Security, Technical Reference

I wrote a lengthy post on Kerberos earlier which describes the Kerberos protocol as well as how Active Directory leverages Kerberos. There are several interesting Active Directory components useful to the pentester. The one I cover here relates to how Kerberos works, specifically Service Principal Names. As I mentioned in my Kerberos post, Service Principal Names …

ADPentesting, ADRecon, ADSecurity, ExchangeDiscovery, ExchangeMDB, ExchangeRFR, Kerberos, MSSQL, PentestRecon, ServicePrincipalName, SPNDiscovery, SQL, SQLDiscovery

Copyright

Content Disclaimer: This blog and its contents are provided "AS IS" with no warranties, and they confer no rights. Script samples are provided for informational purposes only and no guarantee is provided as to functionality or suitability. The views shared on this blog reflect those of the authors and do not represent the views of any companies mentioned. Content Ownership: All content posted here is intellectual work and under the current law, the poster owns the copyright of the article. Terms of Use Copyright © 2011 - 2020.

Made with by Graphene Themes.

Tag: MSSQL

Cracking Kerberos TGS Tickets Using Kerberoast – Exploiting Kerberos to Compromise the Active Directory Domain

Active Directory Pentest Recon Part 1: SPN Scanning aka Mining Kerberos Service Principal Names

Recent Posts

Trimarc Active Directory Security Services

Popular Posts

Categories

Recent Posts

Recent Comments

Archives

Categories

Meta

Copyright

Tag: MSSQL

Cracking Kerberos TGS Tickets Using Kerberoast – Exploiting Kerberos to Compromise the Active Directory Domain

Active Directory Pentest Recon Part 1: SPN Scanning aka Mining Kerberos Service Principal Names

Recent Posts

Trimarc Active Directory Security Services

Popular Posts

Categories

Tags

Recent Posts

Recent Comments

Archives

Categories

Meta

Copyright