top of page
Blog
Long Live Pass-The-Cert: Reviving the Classical Rendition of Lateral Movement across Entra ID joined Devices
Hello Readers, Today, we will explore one attack path which had fizzled out in the past few years. We are talking about Pass-The-Cert Attack, which was first brought to light through the work of Security Researcher Mor Rubin in 2020. What was the original Pass-The-Cert Attack? The flow for the original Pass-The-Cert attack is as follows: An adversary would dump the PRT (Base64 encoded Primary Refresh Token), session key (clear key protected by DPAPI) using mimikatz for an
Hitesh Duseja
Nov 255 min read
BetterSuccessor: Still abusing dMSA for Privilege Escalation (BadSuccessor after patch)
BetterSuccessor: Still abusing dMSA for Privilege Escalation
Shaunak Khosla
Nov 188 min read
Join Altered Security @ Black Hat USA and DEF CON 33
We are super excited to announce that we are coming to the hacker summer camp. Find us at Black Hat USA and DEF CON 33!
Nikhil Mittal
Jul 152 min read
bottom of page