Talkin' Bout [Infosec] News

Join the BHIS Discord discussion server: https://discord.gg/aHHh3u5

We’re really excited to have a close member of our BHIS extended family, Tim Medin from Red Siege InfoSec, here for a webcast on Kerberos & Attacks 101. Tim is the creator of Kerberoasting. Want to understand how Kerberos works? Would you like to understand modern Kerberos attacks? If so, then join Tim Medin as he walks you through how to attack Kerberos with ticket attacks and Kerberoasting. We’ll cover the basics of Kerberos authentication and then show you how the trust model can be exploited for persistence, pivoting, and privilege escalation.

0:00 – 45 Seconds of Banter

0:45 – The Creator Of Kerberosting

1:48 – What Is Kerberos?

4:49 – How It Works

9:23 – PAC: Privilege Attribute Certificate

12:27 – Service Ticket

14:12 – SPN : Service Principal Name

16:22 – Three Long Term Keys

23:39 – I Got A Golden Ticket

24:57 – Ticket Flow

27:49 – Skeleton Key

30:42 – Kerberoasting On an Open Firewall

33:23 – Extract and Crack

Show Notes

Join the BHIS Discord discussion server: https://discord.gg/aHHh3u5 We’re really excited to have a close member of our BHIS extended family, Tim Medin from Red Siege InfoSec, here for a webcast on Kerberos & Attacks 101. Tim is the creator of Kerberoasting. Want to understand how Kerberos works? Would you like to understand modern Kerberos attacks? If so, then join Tim Medin as he walks you through how to attack Kerberos with ticket attacks and Kerberoasting. We’ll cover the basics of Kerberos authentication and then show you how the trust model can be exploited for persistence, pivoting, and privilege escalation. 0:00 – 45 Seconds of Banter 0:45 – The Creator Of Kerberosting 1:48 – What Is Kerberos? 4:49 – How It Works 9:23 – PAC: Privilege Attribute Certificate 12:27 – Service Ticket 14:12 – SPN : Service Principal Name 16:22 – Three Long Term Keys 23:39 – I Got A Golden Ticket 24:57 – Ticket Flow 27:49 – Skeleton Key 30:42 – Kerberoasting On an Open Firewall 33:23 – Extract and Crack
  • (00:00) - 45 Seconds of Banter
  • (01:16) - The Creator Of Kerberosting
  • (02:19) - What Is Kerberos?
  • (05:21) - How It Works
  • (09:54) - PAC: Privilege Attribute Certificate
  • (12:58) - Service Ticket
  • (14:43) - SPN : Service Principal Name
  • (16:53) - Three Long Term Keys
  • (24:10) - I Got A Golden Ticket
  • (25:28) - Ticket Flow
  • (28:20) - Skeleton Key
  • (31:13) - Kerberoasting On an Open Firewall
  • (33:54) - Extract and Crack
  • (34:35) - Silver Ticket
  • (35:56) - Insert Demo Here
  • (37:55) - Cracking Tickets To Get You Out Of Server Jail
  • (44:23) - Trollmode Engaged
  • (45:56) - Pass-The-Ticket
  • (46:36) - Over-Pass-The-Hash
  • (47:08) - Wrap-Up
  • (53:07) - We Have Some Questions
  • (59:56) - 45 More Seconds of Banter

What is Talkin' Bout [Infosec] News?

A weekly Podcast with BHIS and Friends. We discuss notable Infosec, and infosec-adjacent news stories gathered by our community news team.
Join us live on YouTube, Monday's at 4:30PM ET