Which attack involves presenting a Kerberos ticket to access services on other systems?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $24.99Unlock all

Prepare for the Certified Ethical Hacker Version 11 Exam. Study with comprehensive questions and explanations. Equip yourself with the skills needed for success!

Multiple Choice

Which attack involves presenting a Kerberos ticket to access services on other systems?

Explanation:
In Kerberos, authentication is based on tickets that prove a user or service’s identity to other services. A pass-the-ticket attack happens when an attacker takes a valid Kerberos ticket from one host (a service ticket or TGS ticket obtained from a compromised system) and presents it to access services on other systems. Because the ticket is already authenticated and time-limited, the target service accepts it without requiring the attacker to re-enter credentials. This makes it a powerful way to move laterally within a network once a ticket has been captured, often using tools that export and re-inject tickets. Kerberoasting, by contrast, involves dumping and cracking service tickets to recover the service account passwords rather than using a ticket on other systems. AS-REP Roasting targets accounts that don’t use pre-authentication to obtain password data offline. LLMNR/NBT-NS Poisoning is about capturing credentials through spoofed name resolution traffic and is not specifically about presenting a Kerberos ticket to access other systems.

In Kerberos, authentication is based on tickets that prove a user or service’s identity to other services. A pass-the-ticket attack happens when an attacker takes a valid Kerberos ticket from one host (a service ticket or TGS ticket obtained from a compromised system) and presents it to access services on other systems. Because the ticket is already authenticated and time-limited, the target service accepts it without requiring the attacker to re-enter credentials. This makes it a powerful way to move laterally within a network once a ticket has been captured, often using tools that export and re-inject tickets.

Kerberoasting, by contrast, involves dumping and cracking service tickets to recover the service account passwords rather than using a ticket on other systems. AS-REP Roasting targets accounts that don’t use pre-authentication to obtain password data offline. LLMNR/NBT-NS Poisoning is about capturing credentials through spoofed name resolution traffic and is not specifically about presenting a Kerberos ticket to access other systems.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy