responder – WindowsTechs.com

Relaying NTLMv1/v2 – Tradecraft Security Weekly #14

Posted on August 11, 2017 by Paul Asadoorian

A very common attack that many networks are vulnerable to is called LLMNR or NBT-NS poisoning. Through this attack it is possible to gain access to a user’s NTLMv1 or v2 password hash. A more interesting attack can be carried out under the same premise though. Instead of just obtaining a password hash the user’s […]

The post Relaying NTLMv1/v2 – Tradecraft Security Weekly #14 appeared first on Security Weekly.

Continue reading Relaying NTLMv1/v2 – Tradecraft Security Weekly #14→

Responder – LLMNR, MDNS and NBT-NS Poisoner

Posted on April 1, 2016 by Darknet

Responder is an LLMNR, NBT-NS and MDNS poisoner. It will answer to specific NBT-NS (NetBIOS Name Service) queries based on their name suffix (see: NetBIOS Suffixes). By default, the tool will only answer to File Server Service request, which is for SMB. The concept behind this is to target our answers, and be stealthier on […]

The post…

Read the full post at darknet.org.uk

Continue reading Responder – LLMNR, MDNS and NBT-NS Poisoner→