In this article, we will be discussing the concept of Credential Dumping and LAPS (Local Administrator Password Solution). We will delve into the world of
After working on Pass the Hash attack and Over the pass attack, it’s time to focus on a similar kind of attack called Pass the
Active Directory Credential Dumping DCSync Attack is a specialized technique used by attackers to extract credentials from a domain controller (DC) by simulating the behavior
In this post we will discuss “How the attacker uses the Microsoft office for phishing attack to get the NTLM hashes from Windows.” Since we
In this post, we’ll discuss how an attacker uses the ccache file to compromise kerberos authentication to access the application server without using a password.
Today we deal with the technique that at first sounds very much similar to Bruteforcing but trust me, it is not brute-force. It is Password
In this post, we’re going to talk about Over Pass the hash that added another step in passing the hash. Pass the hash is an
If you have been in the Information Security domain anytime in the last 20 years, you may have heard about Pass-the-Hash or PtH attack. It
In this post, we delve into the exploitation of Kerberos accounts with pre-authentication disabled, commonly known as AS-REP Roasting. Specifically, this attack targets user accounts