all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Koh: The Token Stealer

Add to bookmarks
July 7, 2022, 6:09 p.m. | Will Schroeder

Security Boulevard securityboulevard.com

Years ago I was chatting with a few experienced red teamers and one was lamenting token abuse. Specifically, they wanted to be able to automatically “harvest” tokens on a host as people connected, keeping the tokens usable for operators even after the associated account logged off. I knew very little about Windows authentication at the time, so when the other red teamer investigated the idea and told us it wasn’t possible, I left it at that. Before September 2016 they …

koh red team social engineering stealer token windows

Visit resource

More from securityboulevard.com / Security Boulevard

How a YouTube Content Filter Can Give Your District More Control 3 hours ago | securityboulevard.com
beyond can control education +13
ITDR vs ISPM: Which Identity-first Product Should You Explore? 9 hours ago | securityboulevard.com
axiad cybersecurity emerging fresh takes +7
“You Can’t Protect What You Can’t See” Still Rings True. Why Observability Now. 12 hours ago | securityboulevard.com
awareness blog can effectively +12
Transforming Customer Experience: Enhancing CX through CIAM and Insights 14 hours ago | securityboulevard.com
ciam ciam solutions competitive customer +23
What is Penetration Testing: A comprehensive business guide 16 hours ago | securityboulevard.com
benefits business critical cyber security +18
Best Practices to Strengthen VPN Security 16 hours ago | securityboulevard.com
authentication best practices covid data +26
Cradlepoint Adds SASE Platform for 5G Wireless Networks 16 hours ago | securityboulevard.com
5g access cloud cloud service +28
BTS #28 – 5G Hackathons – Casey Ellis 16 hours ago | securityboulevard.com
casey ellis eclypsium enterprise hackathons +6
CCPA Compliance with Accutive Data Discovery and Masking: Understanding and protecting your sensitive data 17 hours ago | securityboulevard.com
act adm platform articles businesses +30

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Cloud Technical Solutions Engineer, Security

@ Google | Mexico City, CDMX, Mexico
View on infosec-jobs.com

Assoc Eng Equipment Engineering

@ GlobalFoundries | SGP - Woodlands
View on infosec-jobs.com

Staff Security Engineer, Cloud Infrastructure

@ Flexport | Bellevue, WA; San Francisco, CA
View on infosec-jobs.com

Software Engineer III, Google Cloud Security and Privacy

@ Google | Sunnyvale, CA, USA
View on infosec-jobs.com

Software Engineering Manager II, Infrastructure, Google Cloud Security and Privacy

@ Google | San Francisco, CA, USA; Sunnyvale, CA, USA
View on infosec-jobs.com
View more jobs