Jorge's Quest For Knowledge!

About Windows Server, ADDS, ADFS, Azure AD, FIM/MIM & AADSync (Just Like An Addiction, The More You Have, The More You Want To Have!)

(2013-07-16) Credential Theft And Reuse – Risks And Mitigations

Posted by Jorge on 2013-07-16


Today I watched a very interesting presentation about “Pass-The-Hash” and other credential theft and reuse scenarios. In addition to the presentation, there is also a document with more detailed info.

-

Presentation: Pass the Hash and Other Credential Theft and Reuse: Preventing Lateral Movement and Privilege Escalation

Document: Mitigating Pass-the-Hash (PtH) Attacks and Other Credential Theft Techniques

-

Information about the tool (Windows Credential Editor, WCE) used:

-

WARNING: DO NOT USE THESE TOOLS IN ANY PRODUCTION ENVIRONMENT! ONLY USE IT IN YOUR ISOLATED TEST ENVIRONMENT AFTER APPROVAL!!!

-

Cheers,
Jorge
———————————————————————————————
* This posting is provided "AS IS" with no warranties and confers no rights!
* Always evaluate/test yourself before using/implementing this!
* DISCLAIMER:
http://jorgequestforknowledge.wordpress.com/disclaimer/
———————————————————————————————
############### Jorge’s Quest For Knowledge #############
#########
http://JorgeQuestForKnowledge.wordpress.com/ ########
———————————————————————————————

About these ads

One Response to “(2013-07-16) Credential Theft And Reuse – Risks And Mitigations”

  1. […] (2013-07-16) Credential Theft And Reuse – Risks And Mitigations […]

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

 
%d bloggers like this: