Kerberoasting: A Deep Dive into Service Account Attacks
A comprehensive analysis of Kerberoasting — how it works at the protocol level, detection opportunities, and hardening strategies for Active Directory environments.
Detection
2 articles
LSASS Dumping: Techniques, Evasion, and Detection
A survey of LSASS credential dumping methods from MiniDump to direct syscalls, with detection logic for each technique.