From Print Spooler to Silver Ticket

Presented at THOTCON 0xB (2021) Rescheduled, Oct. 8, 2021, 2:30 p.m. (25 minutes)

Traditionally machine account NTLM challenge responses were considered useless, learn how pentesters leverage machine accounts to take over your environment. Print Spoolers, Exchange Servers, NTLMv1 Reversing and other techniques are reviewed to level up your pentest game. As a defender learn how to defend against these devastating attacks.

Presenters:

• Dustin Heywood / EvilMog   as EvilMog
  EvilMog is a Bishop Of the Church of Wifi, Member of Team Hashcat, Multiple Black Badge Holder and General Shenanigator for X-Force Red