Impacket
Impacket is a collection of Python libraries and tools designed for working with network protocols, commonly used in penetration testing, red teaming, and post-exploitation. It supports a wide range of protocols such as SMB, TCP, UDP, HTTP, LDAP, and more, allowing users to craft, manipulate, and interact with network packets. Impacket includes tools for tasks like remote command execution, credential dumping, and SMB/NTLM operations, making it particularly useful for interacting with Windows networks. Its scriptable and extensible nature, along with its support for low-level protocol manipulation, makes Impacket a powerful tool for security professionals.
ASREP Roasting : Unprivileged accounts on the windows domain
Getting User account hashes with compromised SPN user on the AD
This will list the other SPN users on the windows AD and to get their hashes we will dump with the following command :
Impacket psexec
Once we crack the hashes of the priviledged accounts on the AD we will now try to gain the shell of the target machine using :
to dump secrets of other users
after getting the full hash of the active accounts on the AD then we can log into any user accounts via providing hash directly
It is very important to check wheather the same account also exists on the local workgroup which can be known through :
Impacket-smbexec & Impacket-wmiexec
Impacket-atexec : Directly pass commands on the targeted server
Lookup sid to list potenial users on the targeted domain
Services execution on the targeted domain
SMBclient over Impacket
for cracking hashes we can crack the hases using hashcat , The detailed overview of hashcat is given below :
Last updated
