A-DC-Coerce detection differences

netwrix / pingcastle

PingCastle - Get Active Directory Security at 80% in 20% of the time

https://www.pingcastle.com

Other

2.29k stars 283 forks source link

Closed mavhc closed 5 days ago

mavhc commented 2 months ago

Running 3.2.0.1 detects A-DC-Coerce flaw Running 3.3.0.0 beta does not detect it

I have: " Network security: Restrict NTLM: Outgoing NTLM traffic to remote servers" set to "Audit all"

vletoux commented 3 weeks ago

last beta remove the results if this is coming from the local machine. I bet you ran PingCastle from a DC

JoeDibley commented 5 days ago

Closing this issue as no reply and a potential solution offered. Please reopen if this is still an issue in the newly released version.