Pass-the-Hash

An attack technique where an attacker uses a stolen NTLM password hash to authenticate to a remote server without knowing the actual password. Windows networks are especially vulnerable because NTLM authentication accepts hashes directly. Attackers extract hashes from memory using tools like Mimikatz.

Definição editorial da DecipherU. Para definições técnicas autoritativas, consulte NIST, ISO, ou o órgão normativo correspondente.