Kerberos Silver Ticket Attack

Written by: Biju Varghese, Technical Product Manager at Attivo Networks – Since 2014 Kerberos Silver Ticket attack has been a well know Active Directory Attack method widely used by the Red Team, pen testers, and some of the state-sponsored attacks. I do not want to get into the attack method, how to, or even into the detection methods. All of this is well documented by the creators of Mimikatz Abusing Microsoft Kerberos and in this blog written by Sean Metcalf on Detecting Forged Kerberos Ticket. Let me introduce a futuristic solution which prevent a Silver ticket attack from the initial step.