📃
Internal Pentest
Ctrl
K
Copy
Internal pentest
Active Directory
Initial attack vectors
ADCS + PetitPotal NTLM Relay
Already explained pretty well in these both articles :
ADCS + PetitPotam NTLM Relay: Obtaining krbtgt Hash with Domain Controller Machine Certificate | Red Team Notes
www.ired.team
https://blog.truesec.com/2021/08/05/from-stranger-to-da-using-petitpotam-to-ntlm-relay-to-active-directory/
blog.truesec.com
Previous
ASREPRoast
Next
Post-Compromise Enumeration
Last updated
4 years ago
Was this helpful?