Collaborate Disseminate
Does anyone know if a service account needs to execute its service to allow Kerberos authentication for it? Or could it still work if the account running the service is not the one with the associated SPN? And how?
Continue reading Do account with SPN always running the service?
A critical vulnerability in the Windows Kerberos authentication protocol poses a significant risk to millions of servers. Microsoft… Continue reading Critical Windows Kerberos Flaw Exposes Millions of Servers to Attack
I am learning about interacting with Kerberos from a programming standpoint and have been recreating some of Rubeus’s functions as a way of learning (because what better open source program is there that deals with Kerberos and tickets). O… Continue reading Administrator escalating to SYSTEM in the normal course of things
I’m setting up a lab environment for unconstrained delegation in Active Directory. I’ve encountered some issues and would appreciate guidance on the correct configuration. Here’s my current setup:
Lab Environment:
Domain Controller (DC01)… Continue reading How to setup a lab for Kerberos Unconstrained Delegation in Active Directory? [migrated]
I’m setting up a lab environment for unconstrained delegation in Active Directory. I’ve encountered some issues and would appreciate guidance on the correct configuration. Here’s my current setup:
Lab Environment:
Domain Controller (DC01)… Continue reading How to setup a lab for Kerberos Unconstrained Delegation in Active Directory? [migrated]
I am in a corporate environment with on-premises AD on the company.com domain.
We have an AWS VPC hosting some .Net APIs in IIS – the domain these are in is companycloud.com. These APIs are all on the same box.
Some of these .Net APIs make… Continue reading Why is presence of SPN on an account causing Kerberos "failed to decrypt" error (KRB_AP_ERR_MODIFIED)
I am solving Tryhackme> Exploiting Active Directory > Task 3. At very last, how new powershell session is opening with the dumped Service Tickets (STs)? He typed this command…
PS> New-PSSession -ComputerName thmserver1.za.tryhac… Continue reading Opening PowerShell (PS) session with STs
Referred to the official microsoft documentation on KCD where they are using the terms KCD & Resource Based Constrained Delegation (RBCD) almost interchangeably which got me confused. They have not mentioned anything related to the dep… Continue reading Is Kerberos Constrained Delegation (KCD) deprecated?
I know that AS (Authentication Server) is a TTP (Trusted Third Party) because it generates keys for two entities (for the client and the TGS).
But what about TGS (Ticket Granting Server)? It also generates keys for two entities (generates … Continue reading In Kerberos, is the "Authentication Server" the only "Trusted Third Party"? Or is "Ticket Granting Server" also a "Trusted Third Party"?
I started to study how the U2U mechanism works and got confused. The gist is as follows. When we use U2U the service ticket will be encrypted with the session key KDC of the user-"server". which he will receive during Kerberos au… Continue reading Why can’t a user who is accessing the service on their own behalf find the "long term" keys to decrypt the service ticket and have to use U2U?