Ask a room of seasoned infosec professionals who feel truly confident with Kerberos, and you'll see a lot of hesitant hands. It's the protocol almost everyone has tried to learn at least once, or twice, or three times… and never actually grasps. And yet, it’s one of the gaps that SEC560: Enterprise Penetration Testing was built to close.
In our free course demo (a self-contained primer pulled straight from OnDemand), I break Kerberos down to three simple rules of three:
Three roles: the client, the service (identified by its Service Principal Name), and the domain controller.
Three flows: logging on (getting your Ticket Granting Ticket), asking for an introduction (the service ticket), and actually using the service.
Three secrets: the client's password hash, the service account's hash, and the krbtgt hash shared between domain controllers.
I use a theme-park analogy the whole way through (your TGT is the MagicBand, your service ticket is the ride ticket, etc.) so the protocol finally clicks. And once it clicks, something powerful happens: Kerberoasting, Golden Tickets, and Silver Tickets stop looking like magical attacks. They're simply consequences of how the protocol was designed to work. Understand the design, and you understand the attacks.
That's the philosophy behind all six days of SEC560—from scoping, recon, and scanning, through initial access, post-exploitation, domain privilege escalation and lateral movement, to persistence and evading controls, capped with a hands-on Capture-the-Flag. We teach you the why, then arm you with the how.
Watch the demo. If a short extract can make Kerberos finally click in a few minutes, imagine what a full week will do.
Find out this Sept 21-26 in Las Vegas at SANS Network Security 2026.
0 Comments:
Post a Comment
Subscribe to Post Comments [Atom]
<< Home