This is jfer from compsec direct.

I would like to show you how to leverage the new Kerberos exploit against Windows domain controllers called ms14-068.

This vulnerability allows a user with domain credentials to forge a Kerberos ticket and receive domain admin privileges via the forged ticket.

I want to thank Sylvain Monné aka Bidord for provide the community an open python exploit that allows for the vulnerability to be exploited.

Although this vulnerability was patched on Nov 19 2014, this exploit will work for many years to come.

Lets get stared.