Security News #0x81
- As my students get ready for Exercise 1, I thought that they might want to learn how to lock and unlock a Linux account from the command line.
- Mimikatz is an offensive security tool that can do things like extract passwords (not hashes) from running memory. It is so cool, it has been incorporated into Metasploit. However, there are some caveats to the module’s use against Windows 8.1 targets. The folks at Carnal0wnage describe the issues.
- Another feature of Mimikatz is its ability to generate Kerberos golden tickets. If you don’t know what these are, quickly head over to Raphael Mudge’s blog and find out! There isn’t a lot that can be done about them- take a look at the recommendations from the CERT-EU to see the extent of the problem. Well, this week Microsoft released a script to reset the krbgt account password to provide some additional defensive options. For more details, head over to the Cyber Trust Blog.
- Speaking of golden tickets, a new Metasploit module to automate the process of generating a golden ticket has been released.
- There is another new Metasploit module to escape from the sandbox in Internet Explorer on Windows 7. The underlying vulnerability is CVE 2015-0016 and it was patched in MS 15-04.