olemus
liik taasesitusründeid (algselt Windows-arvutitel, 1997),
mis on suunatud autentimisprotokolli nõrkustele
ja põhineb sihtmärgi parooliräside taaskasutusel
= an exploit in which an attacker steals a hashed user credential and without cracking it reuses it to trick the authentication mechanism

ülevaateid
http://cwe.mitre.org/data/definitions/836.html

https://en.wikipedia.org/wiki/Pass_the_hash

https://blog.varonis.com/closer-look-pass-hash-part-one/

https://cqureacademy.com/blog/identity-theft-protection/pass-hash-attack-tutorial

tõrje
https://blog.varonis.com/closer-look-pass-hash-part-ii-prevention/

https://blog.varonis.com/closer-look-pass-hash-part-iii-ntlm-will-get-hacked/

https://securityboulevard.com/2020/02/pass-the-hash-attack-mitigation-the-complete-guide/