Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
New PetitPotam attack allows take over of Windows domains
Threat Intel & Info Sharing
July Sa, yyyy
Bleeping Computer
A French security researcher GILLES Lionel, aka Topotam, disclosed a new technique called 'PetitPotam' that performs an NTLM relay attack that does not rely on the MS-RPRN API but instead uses the EfsRpcOpenFileRaw function of the MS-EFSRPC API.
Read More
PetitPotam
Windows
MS-EFSRPC API
MS-RPRN API
EfsRpcOpenFileRaw function
Publisher
Previous
Congress Focuses on Industrial Control System Security
Govt., Critical Infrastructure
Next
MacOS malware steals Telegram accounts, Google Chrome d ...
Malware and Vulnerabilities