DES Is Useful... Sometimes

Posted on Tue 08 August 2023 in Active Directory • Tagged with active directory, infrastructure, windows, kerberos

Using DES to hijack AD accounts


Continue reading

External Trusts Are Evil

Posted on Tue 14 March 2023 in Active Directory • Tagged with active directory, infrastructure, windows, kerberos

Breaking trust transitivity for fun and profit


Continue reading

Defending the Three Headed Relay

Posted on Mon 09 May 2022 in Active Directory • Tagged with active directory, infrastructure, windows, kerberos, defence

Investigating Kerberos relaying and defending against it


Continue reading

More sAMAccountName Impersonation

Posted on Sat 11 December 2021 in Active Directory • Tagged with active directory, infrastructure, windows, kerberos

Some more examples of weaponising CVE-2021-42287/CVE-2021-42278


Continue reading

CVE-2021-42287/CVE-2021-42278 Weaponisation

Posted on Fri 10 December 2021 in Active Directory • Tagged with active directory, infrastructure, windows, kerberos

An example of weaponising CVE-2021-42287/CVE-2021-42278


Continue reading

Another Delegation Edge Case

Posted on Mon 17 May 2021 in Active Directory • Tagged with active directory, infrastructure, windows, kerberos

Demonstrating another type of S4U and a use case


Continue reading

PowerView - A New Hope

Posted on Tue 10 November 2020 in Active Directory • Tagged with active directory, infrastructure, windows, ldap

Exploring some new PowerView features


Continue reading

Revisiting 'Delegate 2 Thyself'

Posted on Tue 18 August 2020 in Active Directory • Tagged with active directory, infrastructure, windows, delegation

Abusing S4U2Self ticket modification for privilege escalation


Continue reading

A Strange Case of Trusts, Machine Accounts and DNS

Posted on Fri 01 May 2020 in Active Directory • Tagged with active directory, infrastructure, windows, cross domain

Looking at the impact of creating machine accounts across domain trusts


Continue reading

Crossing Trusts 4 Delegation

Posted on Sat 04 April 2020 in Active Directory • Tagged with active directory, infrastructure, windows, delegation, cross domain

A brief introduction on cross domain resource-based constrained delegation


Continue reading