Trimarc: Kerberos Bronze Bit Attack (CVE-2020-17049) Scenarios to Potentially Compromise Active Directory
On December 10, NetSPI Security Consultant Jake Karnes was featured in Trimarc:
Jake Karnes (@jakekarnes42) with NetSPI published 3 articles (that’s right 3!) describing a new attack against Microsoft’s Kerberos implementation in Active Directory. He posted an Overview article, describing how the attack works, an Attack article on practical exploitation, and if you need further background on Kerberos, a Theory article.
This article attempts to summarize the key details of the attack and provide some expanded information and potential attack scenarios, including how Active Directory could be compromised leveraging this attack method.
Read the full article here: https://www.hub.trimarcsecurity.com/post/leveraging-the-kerberos-bronze-bit-attack-cve-2020-17049-scenarios-to-compromise-active-directory
Explore More News
Media Alert: NetSPI Selected as a Winner in 9th Annual CyberSecurity Breakthrough Awards
NetSPI has been named the 2025 CyberSecurity Breakthrough Awards winner for Breach and Attack Simulation Solution of the Year.
NetSPI Launches Domain Monitoring for Proactive Protection of Brand Reputation
NetSPI launches Domain Monitoring to proactively protect brand reputation and prevent fraud. Learn how to neutralize threats at no cost.
Media Alert: NetSPI Earns Oregon Top Workplace Award for Second Year in a Row
NetSPI earns Oregon Top Workplaces 2025 award, reflecting its commitment to a supportive, innovative culture where employees thrive. Explore careers today!