Explain Pass-the-Hash, Pass-the-Ticket, and Pass-the-Key.

All authentication abuse techniques in Windows AD. PtH — use NTLM hash directly (without knowing password) to authenticate to remote service. Tools: Mimikatz sekurlsa::pth, Impacket secretsdump → wmiexec. PtT — use Kerberos ticket (TGT or TGS) without knowing password. Common: dump tickets from compromised host with Mimikatz, replay on attacker box. PtK — use Kerberos AES key (256/128) without password — works because AES keys derive from password and timestamp. Newer than PtH, harder to detect. Defence: Credential Guard, restricted-mode RDP, LSA Protection, Protected Users group, regular Kerberos ticket lifetime reduction.

Want the full explanation? This is the atomic answer suitable for quick interview prep. For the structured deep-dive — including code samples, strong-answer vs weak-answer notes, common follow-up questions, and how this fits the larger ethical hacking topic — see the full Q&A on Networkers Home:

→ Ethical Hacking Interview Hub — Full Q&A with deep context

How Networkers Home prepares students for this kind of question

This question reflects real interview rounds at Bangalore's top product, BFSI, and GCC cybersecurity teams. Networkers Home's flagship courses include mock interview sessions drilling exactly these question patterns, with feedback from interviewers who have hired for the role.

→ View the complete ethical hacking interview prep hub
→ View the related Networkers Home course
→ Book a free career consultation

Explain Pass-the-Hash, Pass-the-Ticket, and Pass-the-Key.

How Networkers Home prepares students for this kind of question

Related Active Directory questions

Q. Explain Kerberoasting attack with full chain.

Q. What is BloodHound and how do you use it in AD pen-test?