KrbRelayUp Privilege Escalation | Threat SnapShot

Поделиться
HTML-код
  • Опубликовано: 6 авг 2024
  • In this week's Threat SnapShot, we'll look at a new tool that was released earlier this week -- KrbRelayUp. KrbRelayUp is a universal, no-fix local privilege escalation from a low privileged domain user to local system on domain-joined computers in Windows environments. The Kerberos Relay Attack adds a fake (or owned) computer account to the target's msDS-AllowedToActOnBehalfOfOtherIdentity attribute, making it possible to perform a Resource-Based Constrained Delegation (RBCD) attack against the target. The result of the RBCD attack is Silver Ticket access to the target, which can be used for local administrator access remotely or even locally (meaning privilege escalation) by patching the Win32 Service Control Manager to use Kerberos Authentication locally.
    KrbRelayUp Tool:
    github.com/Dec0ne/KrbRelayUp
    View this attack and analytics in the free, community edition of SnapAttack:
    app.snapattack.com/session/25...
    app.snapattack.com/analytic/7...
    app.snapattack.com/analytic/0...
    app.snapattack.com/analytic/9...
  • НаукаНаука

Комментарии •

Следующие
Автовоспроизведение
1 - [English] You Do (Not) Understand Kerberos Delegation - Introduction32:521 - [English] You Do (Not) Understand Kerberos Delegation - Introduction
1 - [English] You Do (Not) Understand Kerberos Delegation - IntroductionATTL4S
Просмотров 6 тыс.
Kerberos Relaying (KrbRelayUp) Attack & Detection17:20Kerberos Relaying (KrbRelayUp) Attack & Detection
Kerberos Relaying (KrbRelayUp) Attack & DetectionCyber Attack & Defense
Просмотров 2,8 тыс.
Stop, Intel’s Already Dead!13:47Stop, Intel’s Already Dead!
Stop, Intel’s Already Dead!Linus Tech Tips
Просмотров 305 тыс.
Bully Beatdown: The TV Show That Fought Your Bullies17:29Bully Beatdown: The TV Show That Fought Your Bullies
Bully Beatdown: The TV Show That Fought Your BulliesKurtis Conner
Просмотров 1,1 млн
Monster Hunter Wilds: Basic Mechanics Overview02:14Monster Hunter Wilds: Basic Mechanics Overview
Monster Hunter Wilds: Basic Mechanics OverviewMonster Hunter
Просмотров 624 тыс.
Asake, Travis Scott - Active (Official Video)03:05Asake, Travis Scott - Active (Official Video)
Asake, Travis Scott - Active (Official Video)AsakeVEVO
Просмотров 981 тыс.
Shelly-Ann Fraser-Pryce & Sha'Carri Richardson THROW DOWN In Women's 100 Meters || 2024 Olympics08:45Shelly-Ann Fraser-Pryce & Sha'Carri Richardson THROW DOWN In Women's 100 Meters || 2024 Olympics
Shelly-Ann Fraser-Pryce & Sha'Carri Richardson THROW DOWN In Women's 100 Meters || 2024 OlympicsTotal Running Productions
Просмотров 2,1 млн
Click with Caution: The Moniker Link Vulnerability (CVE-2024-21413) Exposed | Threat Snapshot16:39Click with Caution: The Moniker Link Vulnerability (CVE-2024-21413) Exposed | Threat Snapshot
Click with Caution: The Moniker Link Vulnerability (CVE-2024-21413) Exposed | Threat SnapshotSnapAttack
Просмотров 1,9 тыс.
User Profile Service Local Privilege Escalation (CVE-2022-26904) | Threat SnapShot6:47User Profile Service Local Privilege Escalation (CVE-2022-26904) | Threat SnapShot
User Profile Service Local Privilege Escalation (CVE-2022-26904) | Threat SnapShotSnapAttack
Просмотров 1 тыс.
Learn Microsoft Active Directory (ADDS) in 30mins36:26Learn Microsoft Active Directory (ADDS) in 30mins
Learn Microsoft Active Directory (ADDS) in 30minsAndy Malone MVP
Просмотров 864 тыс.
Password Spraying, gMSA, ADIDNS & Constrained Delegation - Intelligence @ HackTheBox15:04Password Spraying, gMSA, ADIDNS & Constrained Delegation - Intelligence @ HackTheBox
Password Spraying, gMSA, ADIDNS & Constrained Delegation - Intelligence @ HackTheBoxvulnlab
Просмотров 3,3 тыс.
Kerberos Delegation and Protocol Transition13:27Kerberos Delegation and Protocol Transition
Kerberos Delegation and Protocol TransitionF5 DevCentral
Просмотров 16 тыс.
Detecting Credential Theft and Lateral Movement via Kerberoasting12:01Detecting Credential Theft and Lateral Movement via Kerberoasting
Detecting Credential Theft and Lateral Movement via KerberoastingSnapAttack
Просмотров 297
Untangling Scattered Spider's Web: Hunting for RMM Tools | Threat SnapShot15:25Untangling Scattered Spider's Web: Hunting for RMM Tools | Threat SnapShot
Untangling Scattered Spider's Web: Hunting for RMM Tools | Threat SnapShotSnapAttack
Просмотров 254
ScreenConnect Compromise: Hackers Are Watching, Are You Ready? | Threat SnapShot16:25ScreenConnect Compromise: Hackers Are Watching, Are You Ready? | Threat SnapShot
ScreenConnect Compromise: Hackers Are Watching, Are You Ready? | Threat SnapShotSnapAttack
Просмотров 646
Detect Hackers & Malware on your Computer (literally for free)16:38Detect Hackers & Malware on your Computer (literally for free)
Detect Hackers & Malware on your Computer (literally for free)John Hammond
Просмотров 298 тыс.
Я разобрал CMF Phone 1 ногтем и отвёрткой #cmf #cmfphone1 #распаковка #unboxing #смартфон #техника01:00Я разобрал CMF Phone 1 ногтем и отвёрткой #cmf #cmfphone1 #распаковка #unboxing #смартфон #техника
Я разобрал CMF Phone 1 ногтем и отвёрткой #cmf #cmfphone1 #распаковка #unboxing #смартфон #техникаПавел Хмурчик
Просмотров 895 тыс.
Os fabricantes de Carregadores 🔌 esconderam isso de você a vida toda #shorts #viral #celular00:26Os fabricantes de Carregadores 🔌 esconderam isso de você a vida toda #shorts #viral #celular
Os fabricantes de Carregadores 🔌 esconderam isso de você a vida toda #shorts #viral #celularDavid Soluções
Просмотров 970 тыс.
ОЖИВЛЯЕМ ТРИДЦАТИЛЕТНИЙ РЕТРО ПК / ОБЗОР И ВКЛЮЧЕНИЕ29:10ОЖИВЛЯЕМ ТРИДЦАТИЛЕТНИЙ РЕТРО ПК / ОБЗОР И ВКЛЮЧЕНИЕ
ОЖИВЛЯЕМ ТРИДЦАТИЛЕТНИЙ РЕТРО ПК / ОБЗОР И ВКЛЮЧЕНИЕMaddy MURK
Просмотров 139 тыс.
Секрет, как продлить жизнь аккумулятора iPhone📱 Сохрани и поделись с друзьями!🙌🏼00:43Секрет, как продлить жизнь аккумулятора iPhone📱 Сохрани и поделись с друзьями!🙌🏼
Секрет, как продлить жизнь аккумулятора iPhone📱 Сохрани и поделись с друзьями!🙌🏼Dimitri Lebed
Просмотров 2,1 млн
Samsung laughing on iPhone #techbyakram00:12Samsung laughing on iPhone #techbyakram
Samsung laughing on iPhone #techbyakramTech by Akram
Просмотров 7 млн
Клиент купил RTX3090 за 55000 с рук! 🤔11:05Клиент купил RTX3090 за 55000 с рук! 🤔
Клиент купил RTX3090 за 55000 с рук! 🤔Герасимов Live
Просмотров 38 тыс.
TECNO POVA NEO 6 - БЮДЖЕТНИК С ГИГАНТСКИМ АККУМУЛЯТОРОМ!21:50TECNO POVA NEO 6 - БЮДЖЕТНИК С ГИГАНТСКИМ АККУМУЛЯТОРОМ!
TECNO POVA NEO 6 - БЮДЖЕТНИК С ГИГАНТСКИМ АККУМУЛЯТОРОМ!DimaViper
Просмотров 24 тыс.
Xiaomi SU-7 Max 2024 - Самый быстрый мобильник32:11Xiaomi SU-7 Max 2024 - Самый быстрый мобильник
Xiaomi SU-7 Max 2024 - Самый быстрый мобильникКлубный сервис
Просмотров 554 тыс.