{"id":1535,"date":"2016-10-30T17:41:43","date_gmt":"2016-10-30T15:41:43","guid":{"rendered":"http:\/\/www.identitycosmos.com\/?p=1535"},"modified":"2016-10-30T17:41:43","modified_gmt":"2016-10-30T15:41:43","slug":"contrer-lattaque-pass-the-hash-grace-a-windows-10-et-windows-server-2016-credential-guard","status":"publish","type":"post","link":"https:\/\/identitycosmos.com\/index.php\/2016\/10\/30\/contrer-lattaque-pass-the-hash-grace-a-windows-10-et-windows-server-2016-credential-guard\/","title":{"rendered":"Contrer l&#8217;attaque pass-the-hash gr\u00e2ce \u00e0 Windows 10 et Windows Server 2016: Credential Guard"},"content":{"rendered":"<p><a href=\"http:\/\/www.identitycosmos.com\/http:\/www.identitycosmos.com\/technique\/contrer-lattaque-pass-the-hash-grace-a-windows-10-et-windows-server-2016-credential-guard\/attachment\/hacker-1280x600\" rel=\"attachment wp-att-1536\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-medium wp-image-1536\" src=\"http:\/\/www.identitycosmos.com\/wp-content\/uploads\/2016\/10\/hacker.1280x600-300x141.jpg\" alt=\"hacker-1280x600\" width=\"300\" height=\"141\" srcset=\"https:\/\/identitycosmos.com\/wp-content\/uploads\/2016\/10\/hacker.1280x600-300x141.jpg 300w, https:\/\/identitycosmos.com\/wp-content\/uploads\/2016\/10\/hacker.1280x600-1024x480.jpg 1024w, https:\/\/identitycosmos.com\/wp-content\/uploads\/2016\/10\/hacker.1280x600-768x360.jpg 768w, https:\/\/identitycosmos.com\/wp-content\/uploads\/2016\/10\/hacker.1280x600.jpg 1280w\" sizes=\"auto, (max-width: 300px) 100vw, 300px\" \/><\/a><\/p>\n<p>L&#8217;attaque &#8220;pass-the-hash&#8221; est un ph\u00e9nom\u00e8ne connu depuis quelques ann\u00e9es, Microsoft a eu quelques difficult\u00e9s \u00e0 trouver des solutions efficaces et universelles pour contrer ce type d&#8217;attaque. Fort heureusement Microsoft a int\u00e9gr\u00e9 dans le couple Windows 10 \/ Windows Server 2016 les outils pour permettre de g\u00e9rer ce type d&#8217;attaque de fa\u00e7on efficace, et c&#8217;est plut\u00f4t du bon boulot !<\/p>\n<p>Pour en savoir un peu plus sur pass-the-hash:<\/p>\n<p>Une mini-site complet sur le site de Microsoft d\u00e9crivant en d\u00e9tails pass-the-hass: https:\/\/technet.microsoft.com\/en-us\/dn785092.aspx<\/p>\n<p>https:\/\/ammarhasayen.com\/2014\/06\/04\/pass-the-hash-attack-compromise-whole-corporate-networks\/<\/p>\n<p>https:\/\/ammarhasayen.com\/2014\/06\/08\/pass-the-hash-attack-compromise-whole-corporate-networks-p2\/<\/p>\n<p>https:\/\/ammarhasayen.com\/2014\/06\/08\/pass-the-hash-attack-compromise-whole-corporate-networks-p3\/<\/p>\n<p>&nbsp;<\/p>\n<p>Credential Guard de Microsoft, permettant notamment de contrer pass-the-hash:<\/p>\n<p>https:\/\/technet.microsoft.com\/en-us\/itpro\/windows\/keep-secure\/remote-credential-guard<\/p>\n<p>https:\/\/technet.microsoft.com\/en-us\/itpro\/windows\/keep-secure\/credential-guard<\/p>\n<p>&nbsp;<\/p>\n<p>Si vous travaillez dans la s\u00e9curit\u00e9 ou si vous g\u00e9rez un environnement Active Directory dans un contexte de s\u00e9curit\u00e9 avanc\u00e9, je vous conseille de consulter et assimiler ces diff\u00e9rents concepts.<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>L&#8217;attaque &#8220;pass-the-hash&#8221; est un ph\u00e9nom\u00e8ne connu depuis quelques ann\u00e9es, Microsoft a eu quelques difficult\u00e9s \u00e0 trouver des solutions efficaces et universelles pour contrer ce type d&#8217;attaque. Fort heureusement Microsoft a int\u00e9gr\u00e9 dans le couple Windows 10 \/ Windows Server 2016 les outils pour permettre de g\u00e9rer ce type d&#8217;attaque de fa\u00e7on efficace, et c&#8217;est plut\u00f4t du bon boulot !<\/p>\n","protected":false},"author":3,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[7],"tags":[132,163,179,216],"class_list":["post-1535","post","type-post","status-publish","format-standard","hentry","category-technique","tag-kerberos","tag-ntlm","tag-pass-the-hash","tag-securite"],"_links":{"self":[{"href":"https:\/\/identitycosmos.com\/index.php\/wp-json\/wp\/v2\/posts\/1535","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/identitycosmos.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/identitycosmos.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/identitycosmos.com\/index.php\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/identitycosmos.com\/index.php\/wp-json\/wp\/v2\/comments?post=1535"}],"version-history":[{"count":0,"href":"https:\/\/identitycosmos.com\/index.php\/wp-json\/wp\/v2\/posts\/1535\/revisions"}],"wp:attachment":[{"href":"https:\/\/identitycosmos.com\/index.php\/wp-json\/wp\/v2\/media?parent=1535"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/identitycosmos.com\/index.php\/wp-json\/wp\/v2\/categories?post=1535"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/identitycosmos.com\/index.php\/wp-json\/wp\/v2\/tags?post=1535"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}