Forced Authentication Detection Using Sysmon With A Hands-On Lab.

Forced authentication is a technique where threat actors can gather credentials by forcing a user to automatically provide authentication data and intercept responses. One approach to forced authentication is placing specially crafted files in network resources, like a Windows file share, that will force a Windows credential hash to a threat actor’s tool.




Dad, husband, cybersecurity practitioner, developer.

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

Why you should be using an AMI Bakery

Network Forensics — Community Challenge

Metamask Wallet Add CCM Network Guidebook

Chatbot Security and Integration Challenges Enterprises are Facing

{UPDATE} The Secret Elevator Remastered Hack Free Resources Generator

Container escape

📢 Ares Protocol Whitelist Lottery Round One Winners Announcement 🎉

{UPDATE} The Tri-Peaks Solitaire Hack Free Resources Generator

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Mark Ernest

Mark Ernest

Dad, husband, cybersecurity practitioner, developer.

More from Medium

HTB Write-up — Paper

HTB Blackfield Machine Walkthrough.

HTB-Beep Writeup

IDE — TryHackMe