Statements (22)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
gptkb:cybersecurity_attack_technique
|
| gptkbp:canAutomate |
gptkb:Impacket
gptkb:Hashcat gptkb:Rubeus |
| gptkbp:category |
lateral movement
credential access |
| gptkbp:detects |
SIEM tools
|
| gptkbp:documentedIn |
MITRE ATT&CK T1558.004
|
| gptkbp:exploits |
Kerberos pre-authentication disabled accounts
|
| gptkbp:firstDescribed |
2014
|
| gptkbp:goal |
obtain password hashes
|
| gptkbp:hashType |
AS-REP hash
|
| gptkbp:mitigatedBy |
enabling Kerberos pre-authentication
monitoring for unusual Kerberos requests |
| gptkbp:relatedTo |
gptkb:Kerberos
|
| gptkbp:supportsProtocol |
gptkb:Kerberos
|
| gptkbp:target |
gptkb:Active_Directory
|
| gptkbp:usedBy |
penetration testers
attackers |
| gptkbp:bfsParent |
gptkb:CrackMapExec
|
| gptkbp:bfsLayer |
8
|
| https://www.w3.org/2000/01/rdf-schema#label |
AS-REP roasting
|