NTLM Hash Capture

GPTKB entity

Statements (21)
Predicate Object
gptkbp:instanceOf cybersecurity technique
gptkbp:canBe gptkb:Impacket
gptkb:Metasploit
responder tool
gptkbp:category credential harvesting
lateral movement technique
gptkbp:enables gptkb:pass-the-hash_attack
offline password cracking
gptkbp:exploits NTLM protocol weaknesses
https://www.w3.org/2000/01/rdf-schema#label NTLM Hash Capture
gptkbp:mitigatedBy using strong passwords
disabling NTLM
enabling SMB signing
enabling multi-factor authentication
gptkbp:relatedTo gptkb:NTLM_authentication
gptkbp:requires network access
gptkbp:target Windows systems
gptkbp:usedIn penetration testing
red teaming
gptkbp:bfsParent gptkb:Responder
gptkbp:bfsLayer 7