DEF CON 31 - A Broken Marriage Abusing Mixed Vendor Kerberos Stacks - Ceri Coburn
Вставка
- Опубліковано 15 вер 2023
- The Windows Active Directory authority and the MIT/Heimdal Kerberos stacks found on Linux/Unix based hosts often coexist in harmony within the same Kerberos realm. This talk and tool demonstration will show how this marriage is a match made in hell. Microsoft's Kerberos stack relies on non standard data to identify it's users. MIT/Heimdal Kerberos stacks do not support this non standard way of identifying users. We will look at how Active Directory configuration weaknesses can be abused to escalate privileges on *inux based hosts joined to the same Active Directory authority. This will also introduce an updated version of Rubeus to take advantage of some of these weaknesses.
- Наука та технологія
amazing!!! thank you!!!😮
I'm the best Monito! Ya heard?
Alway good to listen to defcon
*Very* interesting, good work.
Are you my son one of my kids. I believe you just might fit the boxes except maybe 1 or a few at most lol
cool
If it sees itself self recognized as it own entity it already breached the wall..
Enterprise is a self recognized term.
Corporate coupons.
Vpn breach
May I please get your email sir ,I got many questions