PtH (Pass the Hash Attack)
Attackers and penetration testers use the pass-the-hash attack. This allows them to achieve lateral movement or pivot to other systems in the network.
You do not have to crack the password, as the hash is the password.
One way to prevent this attack is to use group policy to prevent the caching of administrator passwords.
The other is to use the password-salting method. That way, the hashes will be completely different even if the admin uses the same local password for each system.
No comments:
Post a Comment