Pentester's Promiscuous Notebook

Twitter GitHub Blog Sponsor

Twitter GitHub Blog Sponsor

README
⚒️Pentest
⚔️Red Team
🐞Exploit Dev
⚙️Admin

Powered by GitBook

On this page

CVE-2022-33679
Tools

Delegation Abuse

Last updated 9 months ago

https://www.guidepointsecurity.com/blog/delegating-like-a-boss-abusing-kerberos-delegation-in-active-directory/
https://www.thehacker.recipes/ad-ds/movement/kerberos/delegations#theory
https://youtu.be/byykEId3FUs?t=2619
https://luemmelsec.github.io/S4fuckMe2selfAndUAndU2proxy-A-low-dive-into-Kerberos-delegations/
https://unit42.paloaltonetworks.com/next-gen-kerberos-attacks/

CVE-2022-33679

https://googleprojectzero.blogspot.com/2022/10/rc4-is-still-considered-harmful.html
https://github.com/Bdenneu/CVE-2022-33679

Tools

https://github.com/mtth-bfft/adeleg

https://github.com/ShutdownRepo/The-Hacker-Recipes/raw/master/.gitbook/assets/Insomnihack%202022%20-%20Delegating%20Kerberos%20To%20Bypass%20Kerberos%20Delegation%20Limitations.pdf