Sept. 17, 2023, 12:42 a.m. | DEFCONConference


The Windows Active Directory authority and the MIT/Heimdal Kerberos stacks found on Linux/Unix based hosts often coexist in harmony within the same Kerberos realm. This talk and tool demonstration will show how this marriage is a match made in hell. Microsoft's Kerberos stack relies on non standard data to identify it's users. MIT/Heimdal Kerberos stacks do not support this non standard way of identifying users. We will look at how Active Directory configuration weaknesses can be abused to escalate privileges …

abusing active directory authority con def def con def con 31 demonstration directory found harmony kerberos linux marriage microsoft mit realm stack stacks tool unix vendor windows

More from / DEFCONConference

Business Information Security Officer

@ Metrolink | Los Angeles, CA

Senior Security Engineer

@ Freedom of the Press Foundation | Remote, 4 hour time zone overlap with New York City

Security Engineer

@ ChartMogul | Remote, EU

Cyber Hunt Subject Matter Expert (SME) - Hybrid

@ XOR Security | Alexandria, VA

Software Compliance, Safety and Security Manager (w/m/d)

@ Bosch Group | Stuttgart, Germany

Chef de projet - Service PKI

@ Alter Solutions | Paris, France