You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
dfs coercion
About this tag
DFS coercion is a specific type of authentication coercion attack that exploits the Distributed File System (DFS) protocol in Windows networks. Attackers with low-privileged domain accounts can force high-value targets like domain controllers to authenticate to attacker-controlled systems, enabling relay attacks for lateral movement or privilege escalation. This tag covers discussions on understanding, detecting, and defending against DFS coercion and related authentication coercion techniques in Windows environments, including mitigation strategies using native Microsoft security controls.
Authentication coercion attacks have emerged as a formidable and evolving threat to enterprise networks leveraging Windows infrastructure. Despite significant advances in native Microsoft security controls, even low-privileged domain accounts can still exercise a range of techniques to force...