<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>LLMNR on Notes by Nisha</title><link>https://notesbynisha.com/tags/llmnr/</link><description>Recent content in LLMNR on Notes by Nisha</description><generator>Hugo</generator><language>en</language><copyright>&amp;copy; 2026 Nisha</copyright><lastBuildDate>Sun, 21 Jul 2024 00:00:00 +0000</lastBuildDate><atom:link href="https://notesbynisha.com/tags/llmnr/index.xml" rel="self" type="application/rss+xml"/><item><title>Understanding LLMNR Poisoning and Mitigation Techniques</title><link>https://notesbynisha.com/posts/2024-07-21-understanding-llmnr-poisoning-attacks/</link><pubDate>Sun, 21 Jul 2024 00:00:00 +0000</pubDate><guid>https://notesbynisha.com/posts/2024-07-21-understanding-llmnr-poisoning-attacks/</guid><description>&lt;h2 id="introduction" class="relative group">Introduction &lt;span class="absolute top-0 w-6 transition-opacity opacity-0 -start-6 not-prose group-hover:opacity-100">&lt;a class="group-hover:text-primary-300 dark:group-hover:text-neutral-700" style="text-decoration-line: none !important;" href="#introduction" aria-label="Anchor">#&lt;/a>&lt;/span>&lt;/h2>&lt;p>In this blog post, I discuss a common network attack called Link-Local Multicast Name Resolution (LLMNR) poisoning. This type of attack can be highly effective in capturing NTLMv2 hashes, which can then be used to gain unauthorized access to systems in a Windows environment. I will also share insights on how to mitigate this this type of vulnerability attack, ensuring your network remains secure. To illustrate this attack, I have included screenshots from my recent lab demonstration where I successfully captured NTLMv2 hashes using Responder.
&lt;img src="https://notesbynisha.com/assets/images/tcm-academy/tcm-llmnr-1.png">&lt;/p></description></item></channel></rss>