![ADCS + PetitPotam NTLM Relay: Obtaining krbtgt Hash with Domain Controller Machine Certificate - Red Teaming Experiments ADCS + PetitPotam NTLM Relay: Obtaining krbtgt Hash with Domain Controller Machine Certificate - Red Teaming Experiments](https://www.ired.team/~/files/v0/b/gitbook-28427.appspot.com/o/assets%2F-LFEMnER3fywgFHoroYn%2F-Mfw1ugtUbE8yqlV-5jp%2F-Mfw2dJSxQGbd8X3jDyW%2Fimage.png?alt=media&token=8cb8809a-ad2a-4ff2-8864-84c361efe91b)
ADCS + PetitPotam NTLM Relay: Obtaining krbtgt Hash with Domain Controller Machine Certificate - Red Teaming Experiments
![ADCS + PetitPotam NTLM Relay: Obtaining krbtgt Hash with Domain Controller Machine Certificate - Red Teaming Experiments ADCS + PetitPotam NTLM Relay: Obtaining krbtgt Hash with Domain Controller Machine Certificate - Red Teaming Experiments](https://www.ired.team/~/files/v0/b/gitbook-28427.appspot.com/o/assets%2F-LFEMnER3fywgFHoroYn%2F-Mfxl7_D4W2be9XDj2Rh%2F-Mfy8kaq6fVwYKGU-5Gj%2Fimage.png?alt=media&token=e7d49874-374b-4abe-be0b-142377c80882)
ADCS + PetitPotam NTLM Relay: Obtaining krbtgt Hash with Domain Controller Machine Certificate - Red Teaming Experiments
mpgn on Twitter: "In case you want to see something cool about CrackMapExec, ntlmrelayx and Responder 😌😋 1⃣ Responder -I eth0 2⃣ https://t.co/uaVzXZLXfG -t <ip> -smb2support -socks 3⃣ proxychains crackmapexec smb <ip> -
![Admin's Nightmare: Combining HiveNightmare/SeriousSAM and AD CS Attack Path's for Profit - Black Hills Information Security Admin's Nightmare: Combining HiveNightmare/SeriousSAM and AD CS Attack Path's for Profit - Black Hills Information Security](https://www.blackhillsinfosec.com/wp-content/uploads/2021/08/image-8-1024x359.png)