Pth on systems unable to contact DC and non-domain joined computers

Hello everyone,

Hoping someone could please help me out on two scenarios please.

One: You dump a hash of a domain user, test\Alice, on computer A. You wish to use pass the hash against computer B. Both are domain joined. What happens if:

a. Computer B is no longer able to contact the DC, but test\alice has logged on to the system recently (i.e her credentials are still cached)?

b. As above, but test\alice has never logged on to computer B? I assume this would fail.

Two: Computer A and B exist with a local Administrator on both. Password is the same on both systems. They are not domain joined. You capture the user's hash on Computer A. Is an attacker free to use pth against Computer B with no caveats?

Thanks!

Touch here for the full post on Network Security Noblemen tumblr

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s