Search icon CANCEL
Subscription
0
Cart icon
Your Cart (0 item)
Close icon
You have no products in your basket yet
Arrow left icon
Explore Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Free Learning
Arrow right icon
Arrow up icon
GO TO TOP
Advanced Infrastructure Penetration Testing

You're reading from   Advanced Infrastructure Penetration Testing Defend your systems from methodized and proficient attackers

Arrow left icon
Product type Paperback
Published in Feb 2018
Publisher Packt
ISBN-13 9781788624480
Length 396 pages
Edition 1st Edition
Tools
Arrow right icon
Author (1):
Arrow left icon
Chiheb Chebbi Chiheb Chebbi
Author Profile Icon Chiheb Chebbi
Chiheb Chebbi
Arrow right icon
View More author details
Toc

Table of Contents (14) Chapters Close

Preface 1. Introduction to Advanced Infrastructure Penetration Testing 2. Advanced Linux Exploitation FREE CHAPTER 3. Corporate Network and Database Exploitation 4. Active Directory Exploitation 5. Docker Exploitation 6. Exploiting Git and Continuous Integration Servers 7. Metasploit and PowerShell for Post-Exploitation 8. VLAN Exploitation 9. VoIP Exploitation 10. Insecure VPN Exploitation 11. Routing and Router Vulnerabilities 12. Internet of Things Exploitation 13. Other Books You May Enjoy

Kerberos authentication

Kerberos is an authentication protocol under RFC 1510, integrated in Windows operating systems from the beginning of this millennium. It was developed by the Massachusetts Institute of Technology (MIT) under the Athena Project. You can check it and test it via its official website, http://www.kerberos.org. The Kerberos environment contains three parts: the client, the server, and the Key Distribution Center (KDC), as shown in the following figure. It provides identity-based on a key distribution model, presented by Needham and Schroeder:

Kerberos needs the following five steps to proceed:

  1. Authentication is requested from the authentication server, KDC
  2. KDC sends back a session encrypted with the sender’s secret key, in addition to the ticket-granting encrypted with a ticket-granting service
  3. The receiver then decrypts the session and requests permission...
lock icon The rest of the chapter is locked
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Renews at $19.99/month. Cancel anytime
Banner background image