Trimarc: Kerberos Bronze Bit Attack (CVE-2020-17049) Scenarios to Potentially Compromise Active Directory
On December 10, NetSPI Security Consultant Jake Karnes was featured in Trimarc:
Jake Karnes (@jakekarnes42) with NetSPI published 3 articles (that’s right 3!) describing a new attack against Microsoft’s Kerberos implementation in Active Directory. He posted an Overview article, describing how the attack works, an Attack article on practical exploitation, and if you need further background on Kerberos, a Theory article.
This article attempts to summarize the key details of the attack and provide some expanded information and potential attack scenarios, including how Active Directory could be compromised leveraging this attack method.
Read the full article here: https://www.hub.trimarcsecurity.com/post/leveraging-the-kerberos-bronze-bit-attack-cve-2020-17049-scenarios-to-compromise-active-directory
Explore more News
NetSPI Pioneers Continuous Asset Exposure Management with New External Attack Surface Management Solutions
NetSPI®, the proactive security solution, today introduced three tiers of external attack surface management (EASM) solutions, delivered through the The NetSPI Platform.
NetSPI Joins AWS ISV Accelerate Program
NetSPI, the proactive security solution, announced it has joined the Amazon Web Services (AWS) Independent Software Vendor (ISV) Accelerate Program.
NetSPI Names Caroline Japic as Chief Marketing Officer to Drive Next Phase of Growth and Expand Proactive Security Vision
NetSPI announced Caroline Japic joins its team as Chief Marketing Officer to amplify its vision for proactive security.