Zerologon Vulnerability in Netlogon Protocol

In course

DEMO: deserunt reprehenderit esse officia

Velit mollit commodo velit in. Esse ex et cupidatat in labore elit ullamco nulla cupidatat tempor cupidatat consequat enim. Non aliquip deserunt deserunt laborum culpa ullamco aliquip duis ea enim reprehenderit voluptate.

Description

This lecture covers the Zerologon vulnerability in the Microsoft Netlogon Protocol, allowing attackers to authenticate as arbitrary users or devices without their password. It explains the Netlogon Protocol, session key establishment, flags in NetrServerAuthenticate, and exploiting the vulnerability to send requests. The lecture also delves into changing Active Directory passwords, exploiting the vulnerability to gain domain admin access, and the implications of NTLM hashes. It discusses previous Netlogon vulnerabilities, patches released by Microsoft, and the timeline of events related to Zerologon. References to related whitepapers and scripts are provided, along with insights on the severity of the vulnerability.

Instructor

do ad voluptate officia

Amet consectetur irure aute aliquip sint id cillum qui reprehenderit minim esse mollit ipsum. Pariatur amet aliqua commodo ut enim sit sunt enim duis fugiat commodo. Sit quis incididunt laborum id velit sint aliqua nisi eu pariatur ullamco dolor tempor ea. Aute laborum dolor ullamco eiusmod nostrud labore laboris. Minim officia incididunt esse adipisicing fugiat officia cillum ad qui commodo laboris aliquip.

Official source

https://mediaspace.epfl.ch/media/0_v8v613go

About this result

This page is automatically generated and may contain information that is not correct, complete, up-to-date, or relevant to your search query. The same applies to every other page on this website. Please make sure to verify the information with EPFL's official sources.

Ontological neighbourhood

Computer engineering

Computer security: Public-key cryptography

Related lectures (37)