MS14-068

Microsoft Kerberos Checksum Validation Vulnerability

• Priv Esc , standard user > Domain Admin
• Vuln in KDC of domain controllers
• User can obtain tickets by presenting a Kerveros TGT with an altered PAC

https://www.exploit-db.com/exploits/35474

https://github.com/gentilkiwi/kekeo/

auxiliary/admin/kerberos/ms14_068_kerberos_checksum