TMCnet News
Coalfire Labs R&D Team Releases Icebreaker ToolWESTMINSTER, Colo., March 15, 2018 /PRNewswire/ -- Coalfire, a trusted provider of cybersecurity advisory services, announced today that the Coalfire Labs R&D team released Icebreaker, an open source tool that captures Active Directory credentials automatically. Icebreaker helps security professionals automate network attacks against Active Directory from a position inside the network but outside of Active Directory, providing them with plaintext credentials. Authored by Coalfire Senior Security Consultant Dan McInerney, Icebreaker automatically performs five different network attacks in sequence to capture plaintext credentials and hashes. Attack types include:
"By automating what was once a very lengthy, manual and time-intensive process, Icebreaker enables Coalfire to improve the speed, efficiency and effectiveness of internal network testing for its own clients, while also delivering this open source capability to security teams within organizations to help them improve their security posture," said McInerney. Hashes captured by the Icebreaker tool are autocracked, leveraging both the JohnTheRipper password cracker utility and a Coalfire-customized 1 million password wordlist built specifically for Active Directory passwords. Icebreaker also includes the option to kick off Empire and DeathStar upon a successful SMB hash relay in order to gain automated domain admin rights. About Coalfire For more information, visit Coalfire.com. Press Contact: View original content:http://www.prnewswire.com/news-releases/coalfire-labs-rd-team-releases-icebreaker-tool-300614483.html SOURCE Coalfire |