NTLM Relay Attack - Geek Feed

Microsoft to disable NTLM by default in future Windows releases

February 2, 2026February 2, 2026 geekfeed0Tagged Authentication, microsoft, NTLM, NTLM Relay Attack, Pass-the-Hash, windows, windows 11, windows server, Windows Server 2025

Microsoft announced that it will disable the 30-year-old NTLM authentication protocol by default in upcoming Windows releases due to security vulnerabilities that expose organizations to cyberattacks. NTLM (short for New Technology LAN Manager) is a challenge-response authentication protocol introduced in 1993 with Windows NT 3.1 and is the successor to the LAN Manager (LM) protocol. Kerberos has superseded NTLM and […]

3 mins read

Exploit released for new Windows Server “WinReg” NTLM Relay attack

October 24, 2024October 24, 2024 geekfeed0Tagged exploit, microsoft, NTLM, NTLM Relay Attack, poc, Proof of Concept, relay attack, windows

Proof-of-concept exploit code is now public for a vulnerability in Microsoft’s Remote Registry client that could be used to take control of a Windows domain by downgrading the security of the authentication process. The vulnerability is tracked as CVE-2024-43532 and takes advantage of a fallback mechanism in the Windows Registry (WinReg) client implementation that relies on old transport protocols […]

2 mins read