PtH » RO Windows Administrators Weblog

Archives by Tag 'PtH'

Protection from Kerberos Golden Ticket – CERT-EU

By Andrei Ungureanu - Last updated: Tuesday, July 8, 2014

Via CatalinB am primit si un document legat de Kerberos PtH publicat de CERT-EU http://cert.europa.eu/static/WhitePapers/CERT-EU-SWP_14_07_PassTheGolden_Ticket_v1_1.pdf Merita sa aruncati un ochi si sa fiti constienti ca astfel de atacuri sunt posibile acum (prin mimikatz). Mai jos sunt alte doua link-uri luate din document ce mi se par foarte utile: http://blogs.technet.com/b/security/archive/2012/12/06/new-guidance-to-mitigate-determined-adversaries-favorite-attack-pass-the-hash.aspx http://technet.microsoft.com/en-us/library/bb727066.aspx#ECAA PS: Sunt curios daca in […]

NSA Guide – Reducing the Effectiveness of Pass-the-Hash

By Andrei Ungureanu - Last updated: Tuesday, July 1, 2014

Cotrobaind pe net dupa niste tool-uri am gasit un ghid pentru PtH mitigation chiar de la NSA: http://www.nsa.gov/ia/_files/app/Reducing_the_Effectiveness_of_Pass-the-Hash.pdf Si ce m-a suprins a fost ca e chiar de actualitate si contine chestii din sistemele de operare noi gen Windows 8.1 si 2012 R2 (Protected Users group, protected LSASS, blocking local accounts, rdp restrictedadmin). Ghidul nu […]

Recent Posts

Categories

Tags

De vizitat

Archives

Recent Comments

Archives by Tag 'PtH'

Protection from Kerberos Golden Ticket – CERT-EU

NSA Guide – Reducing the Effectiveness of Pass-the-Hash