Category: kerberos

Security Advisory: Active Directory Open to More NTLM Attacks

By: Yaron Zinar and Marina Simakov Drop The MIC 2 (CVE 2019-1166) & Exploiting LMv2 Clients (CVE-2019-1338) Today, on October 2019 Patch Tuesday,...
Read Now

Implementing Conditional Access: How to Challenge Authentication Traffic

A cornerstone of IT networking utopia is the free flow of information, which under the covers means the free flow...
Read Now

10 Things You Need to Know About Kerberos

As our research team continues to find vulnerabilities in Microsoft that bypass all major NTLM protection mechanisms, we start to...
Read Now

The Security Risks of NTLM: Proceed with Caution

NTLM (NT LAN Manager) is Microsoft's old authentication protocol that was replaced with Kerberos starting Windows 2000. It was designed...
Read Now

From Public Key to Exploitation: How We Exploited the Authentication in MS-RDP

 In March Patch Tuesday, Microsoft released a patch for CVE-2018-0886, a critical vulnerability that was discovered by Preempt. This vulnerability...
Read Now