Open Source Tool Automatically Captures Active Directory Credentials, Improving Efficiency for Security Professionals
WESTMINSTER, Colo., — Coalfire, a trusted provider of cybersecurity advisory services, announced today that the Coalfire Labs R&D team released Icebreaker, an open source tool that captures Active Directory credentials automatically.
Resources:
“By automating what was once a very lengthy, manual and time-intensive process, Icebreaker enables Coalfire to improve the speed, efficiency and effectiveness of internal network testing for its own clients, while also delivering this open source capability to security teams within organizations to help them improve their security posture,” said McInerney.
Hashes captured by the Icebreaker tool are autocracked, leveraging both the JohnTheRipper password cracker utility and a Coalfire-customized 1 million password wordlist built specifically for Active Directory passwords.
Icebreaker also includes the option to kick off Empire and DeathStar upon a successful SMB hash relay in order to gain automated domain admin rights.
About Coalfire
Coalfire is the cybersecurity advisor that helps private and public-sector organizations avert threats, close gaps and effectively manage risk. By providing independent and tailored advice, assessments, technical testing and cyber engineering services, we help clients develop scalable programs that improve their security posture, achieve their business objectives, and fuel their continued success. Coalfire has been a cybersecurity thought leader for more than 16 years and has offices throughout the United States and Europe.
For more information, visit Coalfire.com.