Locked CrackMapExec 6.0.0 - Bane | A swiss army knife for pentesting networks

[itsMe]

This is the hidden content, please

• Sign In
• or
• Sign Up

CrackMapExec
CrackMapExec (a.k.a CME) is a post-exploitation tool that helps automate assessing the security of large Active Directory networks. Built with stealth in mind, CME follows the concept of "Living off the Land": abusing built-in Active Directory features/protocols to achieve it's functionality and allowing it to evade most endpoint protection/IDS/IPS solutions.

6.0.0 - Bane

What's Changed

New core features:

    Dump dpapi
    Dump gMSA nt hash
    Dump gMSA using LDAP
    Extract gMSA secret
    Added bloodhound ingestor
    Switch to rich python
    Switch to SQLAlchemy
    Cmedb store a lot more information
    Improvement on the SSH protocol
    Improvement on the FTP protocol
    Added laps decryption
    Progress bar added
    Modules chaining
    log option , to log a specific command into a file
    log option in the cme.conf file to log all commands into a file
    Overwall speed improvement
    Improvement on the login feature (smart bruteforce, credid etc)
    Combine multiple options (--sam --lsa --dpapi etc)
    Sending you nmap (xml) scan is now fixed

New modules:

    enum_av.py -> Enumerate AV installed on the target
    msol.py -> Dump MSOL password
    ntdsutil.py -> Dump NTDS using NTDSUtil
    printnightmare.py -> Check if target vulnerable to printnightmare
    rdcman.py -> Dump RDCMan credentials
    teams_localdb.py -> Dump Teams Cookie
    veeam_dump.py -> Dump VEEAM passwords
    winscp_dump.py -> Dump WinSCP passwords
    firefox.py -> Dump Firefox Passwords
    reg-query.py -> Performs a registry query on the machine
    ldap-checker -> Fully compatible with Kerberos

This is the hidden content, please

• Sign In
• or
• Sign Up