Closed Dramelac closed 10 months ago
Hello!
Yes you are right, certificates set with shadow cred attack cannot be used to do authentication with schannel.
:sunflower:
Hello!
Yes you are right, certificates set with shadow cred attack cannot be used to do authentication with schannel.
🌻 @ThePirateWhoSmellsOfSunflowers Hello, could you please provide an explanation for why authentication with the certificate from PyWhisker is not successful?
Hello @enj5oy! I wrote a comment in #20, maybe it answers your question.
:sunflower:
If an account is compromised with pywhisker.py during a shadow cred attack, a self-signed certificate is registered in LDAP, enabling PKINIT authentication under normal circumstances. However, if the DC returns the error
KDC_ERR_PADATA_TYPE_NOSUPP
, would it still be possible to connect to LDAPS using this certificate?Thank you !