Pass the Hash Guidance Logo

Pass the Hash Guidance

Project hosting scripts for implementing Pass the Hash mitigations with PtHTools module commands.

200
IAM Open Source
Active DirectoryMitigation
Visit website
2
Compare
Compare
0
Explore IAM6 AlternativesCompareStacksMarket MapExplore All Tools
MCPThe entire cybersecurity market, one prompt awayTry MCP Access

Pass the Hash Guidance Description

This project hosts scripts for aiding administrators in implementing Pass the Hash mitigations as outlined in the Reducing the Effectiveness of Pass the Hash paper. The PtHTools module contains the main commands for helping with implementing PtH mitigations: - Find-PotentialPtHEvents - Invoke-DenyNetworkAccess - Edit-AllLocalAccountPasswords - Get-LocalAccountSummaryOnDomain - Invoke-SmartcardHashRefresh - Find-OldSmartcardHash See the PtHTools readme file for more information on how to use them. Guidance: Reducing the Effectiveness of Pass the Hash Long-Lived Hashes for AD Smartcard Required Accounts Limit Workstation-to-Workstation Communication Microsoft guidance: https://aka.ms/pth - Microsoft's Pass-the-Hash general resource page. Mitigating Pass-the-Hash and Other Credential Theft v1 Mitigating Pass-the-Hash and Other Credential Theft v2 How Pass-the-Hash works Local Administrator Password Solution - LAPS is a Microsoft supported tool that ensures local administrator accounts do not all have the same password. It is an alternative to the Edit-AllLocalAccountPasswords command found in PtHTools. krbtgt refresh script - Resets the krbtgt account password twice to invalidate the hash.

Pass the Hash Guidance FAQ

Common questions about Pass the Hash Guidance including features, pricing, alternatives, and user reviews.

Pass the Hash Guidance is Project hosting scripts for implementing Pass the Hash mitigations with PtHTools module commands.. It is a IAM solution designed to help security teams with Active Directory, Mitigation.

Have more questions? Browse our categories or search for specific tools.

FEATURED

Strike48 Logo
Strike48
Security Operations
Push Security Logo
Push Security
Zero Trust
CybersecRadars Logo
CybersecRadars
Threat Management
Hudson Rock Logo
Hudson Rock
Threat Management
1Password Logo
1Password
IAM
Get Featured

ALTERNATIVES

Securden Unified PAM Logo
Securden Unified PAM

Unified PAM platform for privileged account, session, endpoint & vendor access mgmt

0
One Identity Safeguard Logo
One Identity Safeguard

PAM solution for securing privileged accounts and access across enterprises

0
Securden Endpoint Privilege Manager Logo
Securden Endpoint Privilege Manager

Endpoint privilege mgmt solution for removing local admin rights on endpoints

0
cyberelements Privileged Access Management Solution Logo
cyberelements Privileged Access Management Solution

Zero Trust PAM solution for IT/OT environments with session recording

0
Defakto On-Prem Logo
Defakto On-Prem

Identity mgmt for on-prem systems replacing static credentials w/ ephemeral IDs

0

POPULAR

RoboShadow Logo
RoboShadow
Vulnerability Assessment
OSINTLeak Real-time OSINT Leak Intelligence Logo
OSINTLeak Real-time OSINT Leak Intelligence
Threat Intelligence Platforms
Cybersec Feeds Logo
Cybersec Feeds
Threat Intelligence Platforms
TestSavant AI Security Assurance Platform Logo
TestSavant AI Security Assurance Platform
AI Red Teaming
Fabric Platform by BlackStork Logo
Fabric Platform by BlackStork
Security Information and Event Management
View Popular Tools →

TRENDING CATEGORIES

Digital Forensics and Incident Response
Digital Forensics and Incident Response (DFIR) tools for digital forensic analysis, evidence collection, malware analysis, and cyber incident investigation.
504
Threat Intelligence Platforms
TIP for collecting, analyzing, and sharing cyber threat data, indicators of compromise (IOCs), and threat feeds.
357
Penetration Testing
Penetration testing tools and frameworks for manual security testing, exploit development, and vulnerability validation.
263
Offensive Security
Offensive security tools for penetration testing, red team exercises, exploit development, and ethical hacking activities.
245
Identity Governance and Administration
Identity Governance and Administration (IGA) platforms for identity lifecycle management, access governance, role management, and compliance reporting.
230
View All Categories →

Stay Updated with Mandos Brief

Get strategic cybersecurity insights in your inbox