CME在使用网络协议和执行各种后渗透技术方面广泛使用Impacket库(由@asolino开发)。
尽管主要用于攻击性目的(如红队、内部渗透),但蓝队也可以使用CME评估帐户权限、查找可能的配置错误并模拟攻击场景。
依赖:
python3python3-aardwolfpython3-aioconsolepython3-bs4python3-dsinternalspython3-impacketpython3-lsassypython3-maskypython3-msgpackpython3-neo4jpython3-paramikopython3-pylnk3python3-pypsrppython3-pywerviewpython3-requestspython3-termcolorpython3-terminaltablespython3-unicryptopython3-xmltodict
安装或者使用
kali最新版本自带 - 没有自行安装sudo apt install crackmapexec
root@kali:~# crackmapexec -husage:crackmapexec [-h] [-t THREADS] [--timeout TIMEOUT] [--jitter INTERVAL][--darrell] [--verbose]{mssql,winrm,ldap,ssh,smb,rdp,ftp} ...______.____________________.______. ___.________________________________/||_/ /|||/ / |/| / |_| ____|// | ____| /||,----'| |_) | / ^ | ,----'| ' / |/| / ^ ||_) || |__V /| |__| ,----'|| |// /_| || < ||/|| / /_ |___/| __|> <| __|| || `----.|| ----. / _____ |`----.| . | | | | / _____ | | | |____ / . | |____ | `----.______||_| `._____|/__/ ________||__|__ |__| |__| /__/ __ |_| |_______|/__/ __ |_______| ______|A swiss army knifeforpentesting networksForged by @byt3bl33d3rand@mpgn_x64 using the powah of dank memesExclusive releaseforPorchetta Industries usershttps://porchetta.industries/Version :5.4.0Codename:Indestructible G0thm0goptions:-h, --help show this help messageandexit-t THREADS set how many concurrent threads to use (default:100)--timeout TIMEOUT max timeoutinseconds of each thread (default:None)--jitter INTERVAL sets a random delay between each connection (default:None)--darrell give Darrell a hand--verbose enable verbose outputprotocols:available protocols{mssql,winrm,ldap,ssh,smb,rdp,ftp}mssql own stuff using MSSQLwinrm own stuff using WINRMldap own stuff using LDAPssh own stuff using SSHsmb own stuff using SMBrdp own stuff using RDPftp own stuff using FTP
项目地址:
https://github.com/Porchetta-Industries/CrackMapExec
食用文档:
https://wiki.porchetta.industries/
原文始发于微信公众号(Ots安全):Windows/Active 目录横向移动工具包
- 左青龙
- 微信扫一扫
-
- 右白虎
- 微信扫一扫
-
评论