🔥 3-day streak
CompTIA PenTest+ (PT0-003)149 / 175
Question 149 of 175

During a post-exploitation phase, you have compromised a Windows workstation and obtained a domain user's NTLM hash. You want to move laterally to a file server that requires Kerberos authentication, but you do not have the user's cleartext password and cannot yet elevate to domain admin. Which technique lets you use the captured hash to obtain a Kerberos TGT and authenticate to the file server?

Reviewed for accuracy · Report an issueNext question