Kerberos is a heavily utilized but oftentimes opaque protocol used extensively in modern Active Directory environments. This has led to many of the nuances of the protocol being misunderstood, creating space for attackers to develop a variety of attacks that leverage these same nuances to gain access to accounts, move laterally, and escalate privileges. In the past year, these attacks have been some of the primary methods we’ve used to compromise organizations in the course of our assessments. In this talk, we’ll cover the basics of Kerberos authentication, discuss the variety of delegation methods available in the protocol & how they can be abused by attackers, and finally discuss preventions against these attacks.

Details:

Date: Friday - May 16
Time: 16:00
Length: 45 minutes
Location: Lafitte

Speakers:

Dave Cossa

Dave likes offensive security. He is a senior consultant at RSM, where he focuses on performing testing engagements …