all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

DEF CON 31 - A Broken Marriage Abusing Mixed Vendor Kerberos Stacks - Ceri Coburn

Add to bookmarks
Sept. 17, 2023, 12:42 a.m. | DEFCONConference

DEFCONConference www.youtube.com

The Windows Active Directory authority and the MIT/Heimdal Kerberos stacks found on Linux/Unix based hosts often coexist in harmony within the same Kerberos realm. This talk and tool demonstration will show how this marriage is a match made in hell. Microsoft's Kerberos stack relies on non standard data to identify it's users. MIT/Heimdal Kerberos stacks do not support this non standard way of identifying users. We will look at how Active Directory configuration weaknesses can be abused to escalate privileges …

abusing active directory authority con def def con def con 31 demonstration directory found harmony kerberos linux marriage microsoft mit realm stack stacks tool unix vendor windows

Visit resource

More from www.youtube.com / DEFCONConference

DEF CON 31 - Terminally Owned - 60 Years of Escaping - David Leadbeater 1 week, 2 days ago | www.youtube.com
analysis con cryptography def +17
DEF CON 31 - Breaking BMC The Forgotten Key to the Kingdom - Alex Tereshkin, … 1 week, 2 days ago | www.youtube.com
access adam alex baseboard management controller +19
DEF CON 31 - How Vulns in Global Transportation Payment Systems Cost You - Omer … 1 week, 2 days ago | www.youtube.com
con cost def def con +18
DEF CON 31 - Contextualizing The Vulkan Leaks & State Sponsored Offensive Ops - Joe … 1 week, 2 days ago | www.youtube.com
analysis con def def con +17
DEF CON 31 - SpamChannel - Spoofing Emails From 2M+ Domains & Virtually Becoming Satan … 1 week, 2 days ago | www.youtube.com
boston byt3bl33d3r city con +19
DEF CON 31 Car Hacking Village - Automotive USB Fuzzing - Euntae Jang, Donghyon Jeong, … 1 week, 2 days ago | www.youtube.com
automotive automotive industry car car hacking +17
DEF CON 31 - Staying Undetected Using the Windows Container Isolation Framework - Daniel Avinoam 1 week, 2 days ago | www.youtube.com
called cases con container +21
DEF CON 31 - A Broken Marriage Abusing Mixed Vendor Kerberos Stacks - Ceri Coburn 1 week, 2 days ago | www.youtube.com
abusing active directory authority con +19
DEF CON 31 - Contactless Overflow Code Execution in Payment Terminals & ATMs - Josep … 1 week, 2 days ago | www.youtube.com
atm atms code code execution +20

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Business Information Security Officer

@ Metrolink | Los Angeles, CA
View on infosec-jobs.com

Senior Security Engineer

@ Freedom of the Press Foundation | Remote, 4 hour time zone overlap with New York City
View on infosec-jobs.com

Security Engineer

@ ChartMogul | Remote, EU
View on infosec-jobs.com

Cyber Hunt Subject Matter Expert (SME) - Hybrid

@ XOR Security | Alexandria, VA
View on infosec-jobs.com

Software Compliance, Safety and Security Manager (w/m/d)

@ Bosch Group | Stuttgart, Germany
View on infosec-jobs.com

Chef de projet - Service PKI

@ Alter Solutions | Paris, France
View on infosec-jobs.com
View more jobs