Dailydave mailing list archives

Previous By Date Next
Previous By Thread Next

Kerberos Fun

From: Dave Aitel <dave () immunityinc com>
Date: Thu, 05 Feb 2015 13:58:50 -0500
https://vimeo.com/118831548

So I wanted to show everyone this 2-minute movie of CANVAS 6.98
exploiting MS14-068, but I can describe it as well:

1. You add a target (the some box on a domain)
2. You click the exploit, filling in a username and password for the domain.
3. You have a shell on the box as LOCAL/SYSTEM!

I also wanted to link to the Metasploit way, which is a bit more
complex, involving Mimikatz and a bit of a workflow.

https://community.rapid7.com/community/metasploit/blog/2014/12/25/12-days-of-haxmas-ms14-068-now-in-metasploit

-dave

Attachment: signature.asc
Description: OpenPGP digital signature

_______________________________________________
Dailydave mailing list
Dailydave () lists immunityinc com
https://lists.immunityinc.com/mailman/listinfo/dailydave
Previous By Date Next
Previous By Thread Next

Current thread: