InfoSec Worrier

Thoughts on InfoSec, Hacking, and Forensics. Occasional rants on Compliance and Vendors.

2018-03-21

How to Cook AD Crack

A paper I wrote discussing methods to acquire password hashes from Active Directory, how to use them in Pass the Hash attacks, and how to crack them:

https://www.sans.org/reading-room/whitepapers/testing/cracking-active-directory-passwords-how-cook-ad-crack-37940

Posted by martinboller at 21:06

Email This BlogThis!Share to Twitter Share to Facebook Share to Pinterest

Labels: Active Directory, AD, BlueTeam, Debian, Domain, hash, hashcat, InfoSec, Kali, NTLM, Pass the Hash, password, PtH, Windows

No comments:

Newer Post Home

Subscribe to: Post Comments (Atom)

Search This Blog

InfoSec Worriers on Twitter

Mastodon (@itisiboller)
Twitter (@martinboller)

Blog Archive

► 2022 (5)
- ► May (1)
- ► March (1)
- ► February (2)
- ► January (1)

► 2021 (10)
- ► December (4)
- ► November (3)
- ► July (1)
- ► May (1)
- ► March (1)

► 2020 (5)
- ► December (1)
- ► April (1)
- ► March (1)
- ► February (1)
- ► January (1)

► 2019 (7)
- ► December (2)
- ► August (4)
- ► January (1)

▼ 2018 (7)
- ► July (2)
- ► June (1)
- ► April (1)
- ▼ March (3)

Featured Post

How to Cook AD Crack

A paper I wrote discussing methods to acquire password hashes from Active Directory, how to use them in Pass the Hash attacks, and how to cr...

Labels

@bagder 21.4.4 Active Directory AD Analysis API Applied Network Defense APU Base64 blocklist BlueTeam Brave Browser Bullseye ChainOfFools Chrome Chromium chrony Cisco cloudflare CMMI Consent CPU Crap Curl CurveBall CVE-2020-0601 Cyber CyberChef data Debian Decentralized deep protocol tests Defenders Dell Detection DGA DIalekt Didier Stevens dk-hostmaster DKIM DMARC DNS DNSBL DNSSEC do not use Domain e-mail Efficient Elastic Stack Encryption Ethics EU European Union Fines Firefox Firewall FOSS FQDN GCHQ GDPR GMAIL GPS Greenbone Growth gse Hacking hash hashcat hetzner Hidden Honeypot hosting Hotmail hygge IDH InfoSec Internet Explorer Intrusion IP ISO Kali KnowBe4 label leap smear leap-seconds license Lies Logstash maintainer Master Maturity Microsoft Migration minicom Morals Music Nginx NTLM ntp ntpd ntpsec Nuvoton Obituary one.com OpenSSH OpenSSL Oracle osint Pass the Hash password pay PC Engines PCEngines Peerlyst Phishing PII Postfix postmap Postscreen Privacy provider PtH ptp PuTTY QuickDNS Red Team redelegation RR Rufus Security Serial simply.com SMTP sorbs Spam Spamhaus SPF SSL Stratum SynneJyllan systemd time TLS USB Vagrant VirtualBox VMWare Vulnerability Vulnerability Management Windows X-PHISHTEST X-Virus-Scanned

Picture Window theme. Powered by Blogger.