I was a bit bored, so decided to work on a blog post this weekend. It covers how to Kerberoast accounts, while trying to stay under the radar. I'll explain different OpSec failures as well. Tweet added by DebugPrivilege @DebugPrivilege

DebugPrivilege

3 years

I was a bit bored, so decided to work on a blog post this weekend. It covers how to Kerberoast accounts, while trying to stay under the radar. I'll explain different OpSec failures as well.

11

103

341

mRr3b00t

@UK_Daniel_Card

3 years

@DebugPrivilege I’d also suggest finding the actual service and seeing if it exists 😂

1

0

1

DebugPrivilege

@DebugPrivilege

3 years

@UK_Daniel_Card I explained that in the blog sir.

1

0

2

Mike

@miketheitguy

3 years

@DebugPrivilege Thanks for this blog post :) Good stuff.

0

2

spencer

@techspence

3 years

@DebugPrivilege Nice work 👏🏻

0

1

Netsec

@NetsecSE

3 years

@DebugPrivilege Clear and informative as usual from you. Now I'll have to go check if/how I detect these anti-detection techniques. :P

0

1

Nolly

@hailnolly

3 years

@DebugPrivilege Thank you for taking the time and effort to write this, Huy.

0

1

Fabio Viggiani

@fabio_viggiani

3 years

@DebugPrivilege Great post! Also, ".bro" TLDs should be a thing 🤣

0

4

Bert de Jong

@SecBert

3 years

@DebugPrivilege Interesting post and an extra +1 for using George St-Pierre as a user :D.

0

1

Vadim Khrykov

@BlackMatter23

3 years

@DebugPrivilege Really nice recommendations for red teamers, now I know how to enhance our honey SPNs) I wouldn't bother about RC4, it normal for many services. In general what we see, pentesters behave quite noisy while performing kerberoasting.

0

1

4

Asahhh

@theBlazz3

3 years

@DebugPrivilege Great post, thanks!

0

TIM JOHNY

@tim_johny

3 years

@DebugPrivilege @ram2495

0

Replies