There are several Kerberos attacks that take advantage of Microsoft’s legacy support in Active Directory. This legacy support is enabled when using Kerberos RC4 encryption (RC4_HMAC_MD5) since the NTLM password hash is used extensively with this encryption type. The issues are primarily related to the legacy support in Kerberos when Active Directory was released in the year 2000 with Windows Server 2000. Microsoft’s Kerberos implementation in Active Directory has been targeted over the past couple of years by security researchers and attackers alike.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |