ntlm relay

Two Group Policy Management Editor windows showing security policies. Top window has digital sign communications enabled, bottom has it disabled.

Reflecting on Your Tier Model: CVE-2025-33073 and the One-Hop Problem

| | Active Directory, CVE, CVE-2025-33073, ntlm relay, Offensive Security, SMB Signing, Unconstrained Delegation, Vulnerability Research
The False Sense of Security SMB signing on domain controllers has become standard practice across most Active Directory environments. But this hardening may have created a false sense of security. CVE-2025-33073 changes ...
Offensive Security Blog: Latest Trends in Hacking | Praetorian
DEF CON 20 - Marlinspike Hulton and Ray - Defeating PPTP VPNs and WPA2 Enterprise with MS-CHAPv2

The Renaissance of NTLM Relay Attacks: Everything You Need to Know

| | Active Directory, BloodHound, ntlm relay, Red Team, research
NTLM relay attacks have been around for a long time. While many security practitioners think NTLM relay is a solved problem, or at least a not-so-severe one, it is, in fact, alive ...
Posts By SpecterOps Team Members - Medium
Relay Your Heart Away: An OPSEC-Conscious Approach to 445 Takeover

Relay Your Heart Away: An OPSEC-Conscious Approach to 445 Takeover

| | Command And Control, ntlm relay, Offensive Security, Red Team, Reverse Engineering
Even within organizations that have achieved a mature security posture, targeted NTLM relay attacks are still incredibly effective after all these years of abuse. Leveraging several of these NTLM relay primitives, specifically ...
Posts By SpecterOps Team Members - Medium
The Ubiquiti “U” logo, with superimposed text: “SELESS”

FBI Warns: Ubiquiti EdgeRouter is STILL Not Secure

| | APT28, Botnet disruption, Botnet Takedown, botnets, CVE-2023-23397, EdgeRouter, Fancy Bear, FBI warning, GRU, IC3, IC3.gov, Military Unit 26165, nsa, NSA/CISA, NTLM, NTLM Authentication, NTLM hash, NTLM leak, ntlm relay, Russia, russia hacker, russia-based, russian, Russian Cyber Interests, Russian Cyber War, SB Blogwatch, Ubiquiti, Ubiquiti breach, Ubiquiti Inc., Ubiquiti Networks, US FBI
GRU APT28 is back again: Fancy Bear still hacking ubiquitous gear, despite patch availability ...
Security Boulevard
Silverfort Protection Against CVE-2023-23397 Outlook Zero Day

Silverfort Protection Against CVE-2023-23397 Outlook Zero Day

| | Blog, lateral movement, MFA, ntlm relay, outlook, vulnerability, zero-day
In the latest Patch Tuesday, Microsoft released a patch for  CVE-2023-23397 Zero Day in Outlook, that was reported to be exploited in the wild. Exploitation of this vulnerability enables an adversary to ...
Blog - Silverfort