Kerberos Explained (In 3 Levels Of Detail)
My attempt at explaining how the Kerberos authentication protocol works. See below for links to further reading and things I mentioned in the video: My kerberos attack videos: • Kerberos Kerberos spec: https://tools.ietf.org/html/rfc4120 MS-KILE: https://docs.microsoft.com/en-us/open... Windows AcquireCredentialsHandle API: https://docs.microsoft.com/en-us/wind... My kerberos blog post with diagrams: https://vbscrub.com/2020/05/13/kerber... 00:00 Intro 01:45 What is kerberos? 03:30 Authentication process (simple) 07:55 Authentication process (in depth) 17:58 Attacks and vulnerabilities 25:22 Network messages/protocol 31:18 Demonstration and packet capture
▶︎
Taming Kerberos - Computerphile
![[Attack]tive Directory: Compromising a Network in 20 Minutes Through Active Directory](https://i.ytimg.com/vi/MIt-tIjMr08/hqdefault.jpg?sqp=-oaymwEjCNACELwBSFryq4qpAxUIARUAAAAAGAElAADIQj0AgKJDeAE=&rs=AOn4CLCOhcihHEW01zY1dBUy8-jiSQX2JA)
▶︎
[Attack]tive Directory: Compromising a Network in 20 Minutes Through Active Directory
▶︎
Kerberos Authentication
▶︎
Kerberos Authentication Explained | A deep dive
▶︎
GetNPUsers & Kerberos Pre-Auth Explained
▶︎
Kerberos Deep Dive Part 1 - Introduction
▶︎
TR19: Fun with LDAP and Kerberos: Attacking AD from non-Windows machines
▶︎
CertMike Explains Kerberos
▶︎
Stateful vs Stateless Firewalls - You NEED to know the difference
▶︎
An Illustrated Guide to OAuth and OpenID Connect
▶︎
Impacket GetUserSPNs & Kerberoasting Explained
▶︎
Kerberos Golden Ticket Attack Explained
▶︎
Basic Kerberos Authentication
▶︎
The Evolution of Windows Authentication
▶︎
Active Directory Password Security Deep Dive: NTLM, Kerberos, Hashing and Beyond
▶︎
Kerberos Delegation and Protocol Transition
▶︎
DNS Explained using Wireshark: You probably don't know how DNS really works.
▶︎
The Most Mysterious File On The Internet
▶︎
Protecting Against Credential and Token Theft
▶︎