Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
New PetitPotam attack allows take over of Windows domains
Threat Intel & Info Sharing
July 24, 2021
Bleeping Computer
A French security researcher GILLES Lionel, aka Topotam, disclosed a new technique called 'PetitPotam' that performs an NTLM relay attack that does not rely on the MS-RPRN API but instead uses the EfsRpcOpenFileRaw function of the MS-EFSRPC API.
Read More
PetitPotam
Windows
MS-EFSRPC API
MS-RPRN API
EfsRpcOpenFileRaw function
Publisher
Previous
Congress Focuses on Industrial Control System Security
Govt., Critical Infrastructure
Next
MacOS malware steals Telegram accounts, Google Chrome d ...
Malware and Vulnerabilities
/https://cyware-ent.s3.amazonaws.com/image_bank/iStock-491753396.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/2c9f_shutterstock_791299255.jpg)
