Kerberos Authentication Capture
GPTKB entity
Statements (18)
| Predicate | Object |
|---|---|
| gptkbp:instanceOf |
gptkb:cybersecurity_technique
|
| gptkbp:countermeasures |
Kerberos pre-authentication
monitoring suspicious ticket activity strong password policies |
| gptkbp:enables |
offline password cracking
|
| gptkbp:involves |
extracting service tickets (TGS) or authentication tickets (TGT)
capturing Kerberos tickets |
| gptkbp:relatedTo |
gptkb:Kerberos_protocol
|
| gptkbp:riskFactor |
credential compromise
|
| gptkbp:target |
Active Directory environments
|
| gptkbp:usedIn |
penetration testing
red teaming |
| gptkbp:uses |
gptkb:Impacket
gptkb:Mimikatz gptkb:Rubeus |
| gptkbp:bfsParent |
gptkb:Responder
|
| gptkbp:bfsLayer |
8
|
| https://www.w3.org/2000/01/rdf-schema#label |
Kerberos Authentication Capture
|