all InfoSec news
KRBUACBypass - UAC Bypass By Abusing Kerberos Tickets
KitPloit - PenTest Tools! www.kitploit.com
This POC is inspired by James Forshaw (@tiraniddo) shared at BlackHat USA 2022 titled “Taking Kerberos To The Next Level ” topic, he shared a Demo of abusing Kerberos tickets to achieve UAC bypass. By adding a KERB-AD-RESTRICTION-ENTRY
to the service ticket, but filling in a fake MachineID, we can easily bypass UAC and gain SYSTEM privileges by accessing the SCM to create a system service. James Forshaw explained the rationale behind this in a blog post …
abusing blackhat bypass demo entry fake james kerberos poc redteam redteam tools service ticket tickets topic uac uac bypass usa