Purple Kerberos: Current attack strategies & defenses

  • Webcast Aired Monday, 11 Mar 2019 1:00PM EDT (11 Mar 2019 17:00 UTC)
  • Speaker: Erik Van Buggenhout

We have known Kerberos for quite a few years as a more secure authentication mechanism in Windows (especially when compared to NTLM and NTLMv2). In 2014, SANS Instructor Tim Medin was one of the first security practitioners / researchers to describe an effective attack strategy against Kerberos: Kerberoasting. Benjamin Delpy & Vincent Le Toux further developed Kerberos attack strategies in their infamous Mimikatz tool (Golden tickets, Silver tickets, & Skeleton keys). Join Erik in this webcast to discuss what attack strategies work in 2019 (& how?) + security controls for prevention and detection that can be applied!