NTLM vulnerabilities that make you susceptible to relay attacks

In June 2019, Microsoft released patches for two critical vulnerabilities that were discovered in it’s NT LAN Manager (NTLM) protocol suite affecting all versions. These vulnerabilities let attackers execute malicious code on any Windows machine remotely, or even authenticate to an HTTP or Exchange server. In a previous blog, we saw how some of the authentication protocols in Active Directory (AD) work and the cybersecurity risks associated…