Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.

Windows 7: Intercepting pass-the-hash attacks.

21 Apr 2010   #1

Win 7 Ultimate 64-bit. SP1.
Intercepting pass-the-hash attacks.

Limiting who can access highly privileged accounts and where they do can help keep hackers from snatching precious hashes.

Pass-the-hash attacks are among the most difficult assaults to thwart. In these attacks, an intruder -- or an employee performing unauthorized activities -- gains administrative (or root) access to a computer where a user logs on. With that highly elevated access, the intruder can obtain the user's password hash from the machine's memory and log on to other computers as the spoofed user.

Once an outsider obtains elevated access, defending against the pass-the-hash attacks is very difficult. There are even free hacking tools available to aid the process. Even worse, pass-the-hash attacks work against very long passwords, smart cards, and many other logon tokens. There aren't a lot of defenses one can deploy to prevent them, which is why security admins fear them. However, defenses do exist.

Not just a Windows problem
Some people mistakenly believe that only Windows is vulnerable to pass-the-hash attacks. (I'll note that Microsoft is my full-time employer.) However, most of today's popular operating systems perform subject authentication (for example, user, computer, service/daemon) using password hashes. Those hashes sit in the computer's memory on those operating systems as readily as on Windows and can be obtained just as easily, if not more so, if public tools are on hand.
Source -
Intercepting pass-the-hash attacks | Security Central - InfoWorld

My System SpecsSystem Spec


 Intercepting pass-the-hash attacks.

Thread Tools

Similar help and support threads for2: Intercepting pass-the-hash attacks.
Thread Forum
T-Mobile is intercepting my data and it's pissing me off Chillout Room
Don't count on Kerberos to thwart pass-the-hash attacks Security News
OEM and Retail hash different? General Discussion
Hash help General Discussion
7264 X64's hash? General Discussion
7260x86 hash plz. General Discussion
Help| Hash numbers General Discussion

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 04:30 AM.
Twitter Facebook Google+

Windows 7 Forums

Seven Forums Android App Seven Forums IOS App

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33