Professional Documents
Culture Documents
AS-REP Roasting is an attack against Kerberos for user accounts that do not require The obvious protections from this type of attack are to find and
AS-REP Roast 1.Rebeus.exe asreproast
preauthentication. Pre-authentication is the first step in Kerberos authentication, and is MEDIUM 0 1.00 remove any instances of user
designed to prevent brute-force password guessing attacks accounts that are set to not require Kerberos preauthentication. 2.John
There was a uncommon executable running as SYSTEM on the machine which was then
RunForPrivilegeEsc.exe reversed and analysed and manipulated for our benefits
HIGH 0 2.00 Avoid using unsecurely coded applications with high privileges 1.dnSpy
At a high level, a domain trust establishes the ability for users in one domain to authenticate to
resources or
act as a security principal in another domain, a trust does is link up the authentication systems of
two Remove local admin rights from low privileged users in the
domains and allows authentication tra ic to flow between them through a system of referrals. If a domain, disable winrm service if 1.mimikatz # lsadump::dcsync /user:<USER>
Abusing Domain Trusts user HIGH 0 2.00 not required and if the service is necessary, lock down critical 2.mimikatz # kerberos::golden /user:<USER> /domain:</DOMAIN> /sid:<OBJECT
requests access to a service principal name (SPN) of a resource that resides outside of the domain enclaves with separate WinRM SECURITY ID> /rce:<NTLM HASH> /id:<USER ID>
they’re accounts and permissions
current in, their domain controller will return a special referral ticket that points to the key
distribution center
(KDC, in the Windows case the domain controller) of the foreign domain.
HELP
https://hadess.io © 2022-2023 HADESS
About
This task list template provides a simple way to list and track your software
security.
Create and track your AD Security easily using the Active Directory Privlege
Escalation Hardening
LearnChecklist
More by HADESS.IO.
Additional Help
~
Active Directory Hardening
By HADESS.IO
http://hadess.io/
© 2022-2023 HADESS
This spreadsheet, including all worksheets and associated content is a
copyrighted work under copyright laws.
Do not submit copies or modifications of this template to any
organization.