Making NTLM-Relaying Relevant Again by Attacking Web Servers with WebRelayX

The post states that NTLM-Relaying has been considered ineffective due to signing requirements for SMB and LDAP. However, it highlights that relaying is still possible against many web servers that do not enforce Extended Protection for Authentication. This vulnerability extends beyond Active Directory Certificate Services (ADCS) or ESC8.