Contact us: info@akimbocore.com

ASREP Roasting

Published: 19 October 2020    Last Updated: 05 July 2023

If an Active Directory user has pre-authentication disabled, a vulnerability is exposed which can allow an attacker to perform an offline bruteforce attack against that user’s password.

This attack is commonly known as “AS-REP Roasting” in reference to Authentication Service Requests, a part of the process of authentication with Kerberos. An attacker who is able to find a user with pre-authentication disabled can request an AS-REP ticket for that user and this will contain data encrypted with the user’s password.


Continue Reading

Categories

Fixing

Guidance on remediating vulnerabilities.

Infrastructure

Articles concentrating on network and operating system level attacks.

Web Application

Articles covering attacks against web applications and their associated APIS.

Breaches

Articles concentrating on past data breaches, looking for lessons learned.

Wireless

Articles covering breaking into wireless networks and how to keep them safe.

Building

Articles about building secure systems.

Cheat Sheets

Cheat sheets containing common commands or payloads for common vulnerabilities.

Copyright © 2021 Akimbo Core Ltd

Company Number: 13143302

Build: 6-11