MilošJun 12, 2025
RedTeam Pentesting

🚨 Our new blog post about Windows CVE-2025-33073 which we discovered is live:

🪞The Reflective Kerberos Relay Attack - Remote privilege escalation from low-priv user to SYSTEM with RCE by applying a long forgotten NTLM relay technique to Kerberos:

https://blog.redteam-pentesting.de/2025/reflective-kerberos-relay-attack/

A Look in the Mirror - The Reflective Kerberos Relay Attack

It is a sad truth in IT security that some vulnerabilities never quite want to die and time and time again, vulnerabilities that have long been fixed get revived and come right back at you. While researching relay attacks, the bane of Active …

RedTeam Pentesting - Blog
Jun 11, 2025 at 8:03amWeb
Show threadRedTeam PentestingJun 11, 2025

👀 We have also released a paper which really goes into the nitty-gritty for those who are interested 🕵️‍♀️:
https://www.redteam-pentesting.de/publications/2025-06-11-Reflective-Kerberos-Relay-Attack_RedTeam-Pentesting.pdf

For those that only need a short overview, here's our advisory 🚨:
https://www.redteam-pentesting.de/advisories/rt-sa-2025-002/

Show threadRedTeam PentestingJun 11, 2025
We also wanted to take this opportunity to thank @tiraniddo for his amazing work with Kerberos relaying. It is really a gift that keeps on giving.
Show threadAdam ♿Jun 12, 2025
@RedTeamPentesting who did the cover art for this post?
Show threadRedTeam PentestingJun 12, 2025
@voltagex Midjourney
Show threadAdam ♿Jun 12, 2025
@RedTeamPentesting ew.