Jump to content

Pentesting

YOUR-AD-HERE

TOOLS

Locked Masky: remotely dump domain user credentials via an ADCS

By itsMe
September 6, 2022 in Pentesting

Start new topic

Recommended Posts

Master Hacker

itsMe

Posted September 6, 2022

- Share

Posted September 6, 2022

This is the hidden content, please

Masky is a python library providing an alternative way to remotely dump domain users’ credentials thanks to an ADCS. A command line tool has been built on top of this library in order to easily gather PFX, NT hashes, and TGT on a larger scope.

This tool does not exploit any new vulnerability and does not work by dumping the LSASS process memory. Indeed, it only takes advantage of legitimate Windows and Active Directory features (token impersonation, certificate authentication via Kerberos & NT hashes retrieval via PKINIT). A blog post was published to detail the implemented technics and how Masky works.

This is the hidden content, please

Link to comment

Share on other sites

Guest

This topic is now closed to further replies.

Go to topic listing

Similar Content
- Offence RAT v2.5
  
  By 2s4cx43k, April 2
  - remotely
  - hacker
  - (and 8 more)
    
    Tagged with:
    
    remotely
    
    hacker
    
    backdoor
    
    malware
    
    trojan
    
    tool
    
    administration
    
    remote
    
    rat
    
    control
  - 0 replies
  - 150 views
- SQLi Dumper v10 Crack Download [ 2023 ] Best Dumping Tool
  
  By ~~Alterio~~ , July 10, 2023
  - database
  - dump
  - (and 2 more)
    
    Tagged with:
    
    database
    
    dump
    
    hack
    
    sqli
  - 0 replies
  - 245 views
- Rio Pages v2.5 - Next Gen Multi User Page Builder - Nulled
  
  By itsMe, April 20, 2023
  - rio
  - pages
  - (and 8 more)
    
    Tagged with:
    
    rio
    
    pages
    
    v2.5
    
    next
    
    gen
    
    multi
    
    user
    
    page
    
    builder
    
    nulled
  - 0 replies
  - 270 views
- hello people user new here...
  
  By ~~pepepintos~~ , April 15, 2023
  - hello
  - people
  - (and 3 more)
    
    Tagged with:
    
    hello
    
    people
    
    user
    
    new
    
    here...
  - 0 replies
  - 144 views
- MSI Dump - a tool that analyzes malicious MSI installation packages, extracts files, streams, binary data and incorporates YARA scanner.
  
  By dEEpEst, March 31, 2023
  - msi
  - dump
  - (and 15 more)
    
    Tagged with:
    
    msi
    
    dump
    
    tool
    
    that
    
    analyzes
    
    malicious
    
    installation
    
    packages,
    
    extracts
    
    files,
    
    streams,
    
    binary
    
    data
    
    and
    
    incorporates
    
    yara
    
    scanner.
  - 1 reply
  - 178 views

×

Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.