An SMB Relay Race – How To Exploit LLMNR and SMB Message Signing for Fun and Profit
Summary
This article details how to exploit LLMNR and SMB Message Signing vulnerabilities to gain elevated privileges, specifically "Zero to DA" (Domain Administrator), within an environment. It builds upon previous research into NTLM relaying to achieve a foothold quickly.
IFF Assessment
FOE
The article describes offensive techniques for exploiting network protocols to gain unauthorized access, which is detrimental to defenders.
Defender Context
This article highlights critical network vulnerabilities in LLMNR and SMB message signing that attackers can leverage for privilege escalation. Defenders should ensure these protocols are properly secured, patched, and monitored for suspicious activity to prevent unauthorized access.