PetitPotam…from attack to detection via Microsoft Defender for Identity (MDI)

The attack

PSPKIAudit

PetitPotam

NTLMRelayx

Rubeus

MimiKatz — DCSync

MimiKatz — Pass the hash

Microsoft Defender for Identity

Microsoft 365 Defender

Mitigation

--

--

--

Chief Technology Officer @ Nedscaper

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

iOS Guide: How To Downgrade And Save SHSH Blobs!

The NEARStarter NFT discord bounty competition

{UPDATE} Skeet Shooting Championship 3D: Clay Hunt Hack Free Resources Generator

Link-Local Multicast Name Resolution (LLMNR) Attack Lab

Ransomware; Hype or Reality ?

How Safe is NFTing?

Banner header for Security is NFTings Top Priority

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Derk van der Woude

Derk van der Woude

Chief Technology Officer @ Nedscaper

More from Medium

A Working Treatise on Non-Repudiation: Guaranteeing (Un)Fraud , Security, Privacy, Compliance, AML…

@RealTryHackMe #AdventOfCyber Series: Challenge 18 — Playing With Containers…

Tighten SSH access using short-lived SSH Certificates

Monitoring Camel-K applications on Openshift using the Fuse Console — Part 2 (Kamelets)