ROADtools icon indicating copy to clipboard operation
ROADtools copied to clipboard

Published 20 hours ago verified publisher icon dirkjanm

If ROAD tools can get context and derivedkey?

Open ql3xHd630 opened this issue 10 months ago • 1 comments

I Notice that there is method "Pass the Certificate" to move to other computer in AzureAD joined local AD. this tech need context and derivedkey from mimikatz. But mimikatz need a administrator permission to get these information.

ql3xHd630 avatar Apr 05 '24 08:04 ql3xHd630

Do you have a reference of where that is required? ROADtools can create a context + derived key combination from a PRT, but it cannot do that from data on an endpoint directly.

dirkjanm avatar Apr 17 '24 15:04 dirkjanm

hello dirkjanm. i like your azure pentest tools and document very much. how to use ROADtools create a context+ derived key?

ql3xHd630 avatar Aug 02 '24 05:08 ql3xHd630

https://cloud.hacktricks.xyz/pentesting-cloud/azure-security/az-lateral-movement-cloud-on-prem/az-pass-the-certificate

ql3xHd630 avatar Aug 02 '24 05:08 ql3xHd630