Why do administrators create passwords vulnerable to kerberoasting?

I was researching a kerberoasting attack on the Active Directory domain. To create the stand, I used a Domain Controller on Windows Server 2016 and one client machine on Windows 10. SQL Server was installed on the Domain Controller which w… Continue reading Why do administrators create passwords vulnerable to kerberoasting?

Is the MIT implementation of Kerberos protocol as vulnerable as the one used by Microsoft?

I am doing some research for school about the Kerberos protocol and its vulnerabilities, especially the Pass the Ticket attack.
Related articles are always talking about Active Directory so I was wondering if the MIT version of Kerberos wa… Continue reading Is the MIT implementation of Kerberos protocol as vulnerable as the one used by Microsoft?

Kerberos – obtaining the krbtgt’s secret in order to perform Golden Ticket attack

As far as I know, in order to create a Golden Ticket, the attacker needs to obtain the krbtgt’s password’s hash, which is not a trivial task. My question is: is it possible to find the krbtgt’s password by getting a legitimate TGT (encrypt… Continue reading Kerberos – obtaining the krbtgt’s secret in order to perform Golden Ticket attack