F5F Stay Refreshed Software Operating Systems Non-Enterprise edition of Windows 10 support for Credential Guard

Non-Enterprise edition of Windows 10 support for Credential Guard

Non-Enterprise edition of Windows 10 support for Credential Guard

S
Spaceface16518
Senior Member
Find
564
10-07-2016, 03:21 AM
#1
I was checking the Group Policy Editor and noticed Windows Defender Credential Guard. I wasn’t sure it existed in the Pro version, but once I enabled it, it showed up under the Core Isolation section. My knowledge isn’t enough to confirm its effectiveness, though. From what I understand, it safeguards admin credentials by encrypting them, making it harder for malware to use stolen passwords because an extra verification step is required before access is given. I’m not sure how beneficial it would be in a home setup, but it’s definitely something to be aware of. Could someone clarify this for me? Thanks ahead.
Reply
Reply
S
Spaceface16518
10-07-2016, 03:21 AM #1

I was checking the Group Policy Editor and noticed Windows Defender Credential Guard. I wasn’t sure it existed in the Pro version, but once I enabled it, it showed up under the Core Isolation section. My knowledge isn’t enough to confirm its effectiveness, though. From what I understand, it safeguards admin credentials by encrypting them, making it harder for malware to use stolen passwords because an extra verification step is required before access is given. I’m not sure how beneficial it would be in a home setup, but it’s definitely something to be aware of. Could someone clarify this for me? Thanks ahead.

Reply
Reply
A
AlphaWolf00
Junior Member
Find
17
10-09-2016, 03:29 AM
#2
This appears to be a countermeasure against Mimikatz. You might try installing Metasploit and checking if Mimikatz functions.
Reply
Reply
A
AlphaWolf00
10-09-2016, 03:29 AM #2

This appears to be a countermeasure against Mimikatz. You might try installing Metasploit and checking if Mimikatz functions.

Reply
Reply
T
THE_MINI_AXE
Junior Member
Find
5
10-09-2016, 10:59 AM
#3
Is there a resource available to help you check if this exploit is addressed by Credential Guard? There isn’t a straightforward interface or quick guide within the Metasploit framework. After further investigation, it appears Credential Guard primarily safeguards domain credentials, making it less relevant for regular workgroup or home users. I wonder why such advanced protection is reserved for enterprise environments—it really sheds light on its purpose.
Reply
Reply
T
THE_MINI_AXE
10-09-2016, 10:59 AM #3

Is there a resource available to help you check if this exploit is addressed by Credential Guard? There isn’t a straightforward interface or quick guide within the Metasploit framework. After further investigation, it appears Credential Guard primarily safeguards domain credentials, making it less relevant for regular workgroup or home users. I wonder why such advanced protection is reserved for enterprise environments—it really sheds light on its purpose.

Reply
Reply