Glossary
PASS THE HASH
defined.
An authentication-relay technique where an attacker uses an NTLM hash (rather than the plaintext password) to authenticate to other systems.
A–Z
An authentication-relay technique where an attacker uses an NTLM hash (rather than the plaintext password) to authenticate to other systems.
Pass-the-Hash is core lateral-movement tradecraft. Mitigation is layered: Credential Guard / LSA protection in Windows, no local-admin password reuse (LAPS), and disabling NTLM where possible.
See our web application penetration testing, API security testing, network penetration testing, and cloud security audit services for how we test for and defend against this class of issue.
30-minute call with an OSCP-certified engineer. Tailored proposal in 24 hours.