DNS unsecure update abuse with kerberos AP_REQ hijacking

Hi, I'm doing self promotion for a tool I published recently. I found during engagements that DNS unsecure updates are quite often enabled in active directory environments, like 50% often (https://www.cert.ssi.gouv.fr/uploads/ad_checklist.html#vuln_dnszone_bad_prop). Though it is a critical vulnerability, I never found an easy way to exploit it with low risk of denial of service.

https://github.com/almandin/krbjack

I wrote a tool to perform full duplex man in the middle with minimal network performance impact, hijacking DNS records to access sensitive network traffic. In …

access blobs cybersecurity dns hijacking impact install kerberos network network traffic performance service services smb steal system target tickets tool traffic under working