Skip to content

Instantly share code, notes, and snippets.

View infotek's full-sized avatar

Jason Ellison infotek

3 followers · 13 following
View GitHub Profile
@filipesam
filipesam / pwn-o-magic.md
Created January 22, 2019 22:06
Pwning internal networks automagically

Intro

This document pools several awesome tools and blog entries together (see "Resources" at the end of this doc) in an attempt to automate the process of getting an initial foothold on a network in a situation where you have no valid credentials.

Download and install ntlmrelay

Ok, so one weird thing I'm trying to figure out is if I install ntlmrelay as the first tool we'll use, these steps seem to work ok:

git clone https://github.com/CoreSecurity/impacket.git /opt/impacket
cd /opt/impacket
pip install .
@filipesam
filipesam / dementor.py
Created October 6, 2018 21:41 — forked from 3xocyte/dementor.py
rough PoC to connect to spoolss to elicit machine account authentication
#!/usr/bin/env python
# abuse cases and better implementation from the original discoverer: https://github.com/leechristensen/SpoolSample
import os
import sys
import argparse
import binascii
import ConfigParser
from time import sleep