Tooling
Manspider
Very useful tool to crawl shares on the domain and find juicy information.
Snaffler
Another tool to crawl Windows shares and find juicy information our user has access too.
This tools needs to be run from a domain-joined Windows system host or a domain user context.
-d
: Specify the domain to look within.
-s
: print the result on the console.
-v
: verbosity (data is specified to only output the result).
Coercer
Coerce a Windows system to authenticate to our attacker machine. We can also use Responder (ntlmrelayx.py) to relay the authentication.
Last updated