all InfoSec news
DragonCastle - A PoC That Combines AutodialDLL Lateral Movement Technique And SSP To Scrape NTLM Hashes From LSASS Process
Jan. 19, 2023, 11:30 a.m. | noreply@blogger.com (Unknown)
KitPloit - PenTest Tools! www.kitploit.com
A PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process.
DescriptionUpload a DLL to the target machine. Then it enables remote registry to modify AutodialDLL entry and start/restart BITS service. Svchosts would load our DLL, set again AutodiaDLL to default value and perform a RPC request to force LSASS to load the same DLL as a Security Support Provider. Once the DLL is loaded by LSASS, it would search inside the process …
hashes lateral movement lsass netbios ntlm ntlm hashes performance poc process processes python3 rpc windows
More from www.kitploit.com / KitPloit - PenTest Tools!
VectorKernel - PoCs For Kernelmode Rootkit Techniques Research
5 days, 7 hours ago |
www.kitploit.com
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Security Engineer II, Offensive Security Penetration Testing
@ Amazon.com | US, TX, Virtual Location - Texas
Cybersecurity Specialist (Security Engineering)
@ Triton AI Pte Ltd | Singapore, Singapore, Singapore
Information Systems Security Officer (ISSO)
@ ARA | Arlington, Virginia, United States
Lead - IT Risk compliance & Info Security
@ First Advantage | Bengaluru-560042, Karnataka
Embedded VSOC Analyst
@ Sibylline Ltd | Australia, Australia