Early bird registration for SO-CON 2026 is now open!  Register Now
< Back to Blog
Default Author Image

Elad Shamir

See the latest by Elad Shamir

Image for post titled Is Kerberoasting Still a Risk When AES-256 Kerberos Encryption Is Enabled?

Is Kerberoasting Still a Risk When AES-256 Kerberos Encryption Is Enabled?

TL;DR Kerberoasting is fundamentally a weak password problem. Stronger encryption slows down cracking, but it doesn’t...

By: Elad Shamir
Oct 21, 2025 • 4 min read
Read Post
Image for post titled The Renaissance of NTLM Relay Attacks: Everything You Need to Know

The Renaissance of NTLM Relay Attacks: Everything You Need to Know

NTLM relay attacks have been around for a long time. While many security practitioners think NTLM...

By: Elad Shamir
Apr 8, 2025 • 40 min read
Read Post
Image for post titled Navigating the Uncharted: A Framework for Attack Path Discovery

Navigating the Uncharted: A Framework for Attack Path Discovery

This is the second post in a series on Identity-Driven Offensive Tradecraft, which is also the...

By: Elad Shamir
Aug 20, 2024 • 8 min read
Read Post
Image for post titled The Security Principle Every Attacker Needs to Follow

The Security Principle Every Attacker Needs to Follow

Earlier this year, I was tasked with developing a follow-on course for our renowned Adversary Tactics:...

By: Elad Shamir
Jul 17, 2024 • 12 min read
Read Post
Image for post titled At the Edge of Tier Zero: The Curious Case of the RODC

At the Edge of Tier Zero: The Curious Case of the RODC

The read-only Domain Controller (RODC) is a solution that Microsoft introduced for physical locations that don’t...

By: Elad Shamir
Jan 25, 2023 • 19 min read
Read Post
Image for post titled Shadow Credentials: Abusing Key Trust Account Mapping for Account Takeover

Shadow Credentials: Abusing Key Trust Account Mapping for Account Takeover

By: Elad Shamir
Jun 17, 2021 • 12 min read
Read Post