Domain Persistence - Golden Certificate

preview_player
Показать описание
Retrieving the CA certificate could allow a threat actor to forge and sign certificates for any domain user on the domain including domain machine accounts for domain persistence. The most critical machine account is the the one the belongs to the Domain Controller.

The forged certificate can then be used to request a Kerberos ticket from the KDC and utilize this ticket with pass the ticket on any host.

Using the DCSync technique the NTLM hash of the domain administrator can be retrieved which can be used with pass the hash to establish a session with the domain controller or via WMI.

  1. Pentest Laboratories
  2. Domain Persistence
  3. Certification Authority
  4. RedTeam
Рекомендации по теме
Domain Persistence - 0:02:17

Domain Persistence - Golden Certificate

PowerShell for Pentesters 0:05:19

PowerShell for Pentesters - Golden Ticket Persistence

Domain Persistence: Detection, 1:12:04

Domain Persistence: Detection, Triage, and Recovery

Certified Pre-Owned: Abusing 0:34:53

Certified Pre-Owned: Abusing Active Directory Certificate Services

Let the Children 0:51:40

Let the Children play - Leveraging ADCS for persistence in Parent-Child configured forests

Domain Persistence: Detection, 0:45:26

Domain Persistence: Detection, Triage, and Recovery - Josh Prager & Nico Shyne [SO-CON 2024]

Hunting for Active 0:37:51

Hunting for Active Directory Persistence

ReCertifying Active Directory 0:40:19

ReCertifying Active Directory Certificate Services

Domain Persistence- Detection, 0:44:25

Domain Persistence- Detection, Triage, and Recovery - Joshua Prager

When you first 0:00:32

When you first time install Kali linux for hacking 😄😄 #hacker #shorts

what it’s like 0:00:25

what it’s like to work at GOOGLE…

BSidesNYC 2024 - 0:50:05

BSidesNYC 2024 - Detection and Triage of Domain Persistence

Hacking a Domain 0:16:14

Hacking a Domain Controller

How Hackers Persist 0:27:12

How Hackers Persist & Privesc in Microsoft 365

Red Vs. Blue: 0:49:00

Red Vs. Blue: Modern Active Directory Attacks, Detection, And Protection

The resume structure 0:00:16

The resume structure that got me my dream job | Wonsulting

How to greet 0:00:37

How to greet the interviewer? | Interview Tips

SANS Webcast: Dominating 1:00:14

SANS Webcast: Dominating The Active Directory

SANS Webcast: Kerberos 0:46:38

SANS Webcast: Kerberos & Attacks 101

Top 6 Most 0:04:21

Top 6 Most Popular API Architecture Styles

Attack Tutorial: How 0:05:49

Attack Tutorial: How Silver Ticket Attack Works

Persisting AD - 1:27:36

Persisting AD - Part 1 [Active Directory Hacking] -- TryHackMe LIVE!

My Cloud is 0:40:43

My Cloud is APT's Cloud: Investigating and Defending Office 365

Watching The Watchdog: 0:50:15

Watching The Watchdog: Protecting Kerberos Authentication With Network Monitoring

Комментарии
Автор

Very interesting techniques and approaches to modern day securities.

patricearseneault
Автор

Sorry to bother you i tried to compile the forgecert.exe project usin the SLN file, no matter what .NET framework i used (2.0 to 4.8.1), and settings i can't build it neither DEBUG nor BUILD in VS, no error in the project very hard to troubleshoot . thanks in advance

SALTINBANK