Kerberos Authentication Capture

GPTKB entity

Statements (18)
Predicate Object
gptkbp:instanceOf cybersecurity technique
gptkbp:countermeasures Kerberos pre-authentication
monitoring suspicious ticket activity
strong password policies
gptkbp:enables offline password cracking
https://www.w3.org/2000/01/rdf-schema#label Kerberos Authentication Capture
gptkbp:involves extracting service tickets (TGS) or authentication tickets (TGT)
capturing Kerberos tickets
gptkbp:relatedTo gptkb:Kerberos_protocol
gptkbp:riskFactor credential compromise
gptkbp:target Active Directory environments
gptkbp:usedIn penetration testing
red teaming
gptkbp:uses gptkb:Impacket
gptkb:Mimikatz
gptkb:Rubeus
gptkbp:bfsParent gptkb:Responder
gptkbp:bfsLayer 7