Browsed by
Category: Attacks

What is a Forged PAC Attack?

What is a Forged PAC Attack?

Threat (Privilege Escalation) Forged PAC is a privilege escalation method that allows an attacker to be able to forge the Privilege Account Certificate (PAC) in a Kerberos ticket to gain access to resources they didn’t previously have before. How Forged PAC Works Using a Silver Ticket An attacker gains access to a service account password or password hash using any number of methods, including Kerberoasting, DCSync, LSASS Injection or NTDS.dit Compromise. If attacker has a password, then they need to