Subscribe via feed.

Windows Credential Guard Insufficient Checks On Kerberos Encryption Type Use

Posted by deepcore on September 10, 2022 – 2:26 am

Windows CG APIs, which take encrypted keys, do not limit what encryption or checksum types can be used with those keys. This can result in using weak encryption algorithms which could be abused to either generate keystreams or brute force encryption keys.


This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.


« »