RemoteMonologue: NTLM Credential Theft π¨
A new red team method, RemoteMonologue, steals NTLM credentials remotely without payloads, using DCOM objects. Stay secure! π
Secure Thread
127 views β’ Apr 10, 2025
About this video
β οΈ A new red team technique, RemoteMonologue, allows NTLM credential theft remotely without touching LSASS or using payloads.
π» It leverages DCOM objects and registry tweaks to trigger stealthy authentication to attacker-controlled UNC paths.
π‘οΈ Blue teams must lock down NTLM and DCOM settings to stay protected.
#RedTeam #CredentialTheft #NTLM #RemoteMonologue #WindowsSecurity #BlueTeam #Infosec #CyberSecurity #LivingOffTheLand #EDRBYPASS
π» It leverages DCOM objects and registry tweaks to trigger stealthy authentication to attacker-controlled UNC paths.
π‘οΈ Blue teams must lock down NTLM and DCOM settings to stay protected.
#RedTeam #CredentialTheft #NTLM #RemoteMonologue #WindowsSecurity #BlueTeam #Infosec #CyberSecurity #LivingOffTheLand #EDRBYPASS
Video Information
Views
127
Likes
2
Duration
0:11
Published
Apr 10, 2025
Related Trending Topics
LIVE TRENDSRelated trending topics. Click any trend to explore more videos.