CrackMapExec

CrackMapExec (CME) is a powerful post-exploitation tool designed for penetration testers and red teamers, particularly in Windows environments. It automates tasks like network enumeration, credential validation, and lateral movement across a network using protocols such as SMB, RDP, and WMI. CME allows for remote command execution, pass-the-hash attacks, brute force attempts, and enumeration of active sessions and shares. Its ability to exploit common Windows vulnerabilities makes it invaluable for both offensive and defensive security professionals. While it is essential for penetration testing, it can also pose a security risk if misused by attackers.

Installation :

sudo apt update
sudo apt install crackmapexec

Usage :

1. crackmapexec smb 192.168.1.0/24 -u username -p password
   crackmapexec smb 192.168.1.0/24 -u username -p password --shares
   crackmapexec smb 192.168.1.0/24 -u username -p password --sessions
   crackmapexec smb 192.168.1.0/24 -u username -P /path/to/password-list
   
2. crackmapexec rdp 192.168.1.0/24 -u username -p password
3. crackmapexec wmi 192.168.1.10 -u username -p password -x "ipconfig"
4. crackmapexec winrm 192.168.1.0/24 -u username -p password
5. crackmapexec ldap 192.168.1.10 -u username -p password
6. crackmapexec kerberos 192.168.1.10 -u username -p password
7. crackmapexec rpc 192.168.1.10 -u username -p password
8. crackmapexec ftp 192.168.1.10 -u username -p password