When it comes to encryption, many weak algorithms and ciphers are still heavily used and relied upon in Active Directory environments everywhere. One of the typical weak algorithms used in encrypting Kerberos tickets is RC4; the cipher RC4-HMAC to be precise. Typically, RC4 is used by legacy systems, over misconfigured Active Directory trusts, and by … Continue reading "HOWTO: Detect Kerberos tickets that are encrypted using RC4"