jueves, 27 de agosto de 2020

Goddi (Go Dump Domain Info) - Dumps Active Directory Domain Information



Based on work from Scott Sutherland (@_nullbind), Antti Rantasaari, Eric Gruber (@egru), Will Schroeder (@harmj0y), and the PowerView authors.

Install
Use the executables in the releases section. If you want to build it yourself, make sure that your go environment is setup according to the Go setup doc. The goddi package also uses the below package.
go get gopkg.in/ldap.v2

Windows
Tested on Windows 10 and 8.1 (go1.10 windows/amd64).

Linux
Tested on Kali Linux (go1.10 linux/amd64).
  • umount, mount, and cifs-utils need to be installed for mapping a share for GetGPP
apt-get update
apt-get install -y mount cifs-utils
  • make sure nothing is mounted at /mnt/goddi/
  • make sure to run with sudo

Run
When run, will default to using TLS (tls.Client method) over 636. On Linux, make sure to run with sudo.
  • username: Target user. Required parameter.
  • password: Target user's password. Required parameter.
  • domain: Full domain name. Required parameter.
  • dc: DC to target. Can be either an IP or full hostname. Required parameter.
  • startTLS: Use to StartTLS over 389.
  • unsafe: Use for a plaintext connection.
PS C:\Users\Administrator\Desktop> .\godditest-windows-amd64.exe -username=testuser -password="testpass!" -domain="test.local" -dc="dc.test.local" -unsafe
[i] Begin PLAINTEXT LDAP connection to 'dc.test.local'...
[i] PLAINTEXT LDAP connection to 'dc.test.local' successful...
[i] Begin BIND...
[i] BIND with 'testuser' successful...
[i] Begin dump domain info...
[i] Domain Trusts: 1 found
[i] Domain Controllers: 1 found
[i] Users: 12 found
        [*] Warning: keyword 'pass' found!
        [*] Warning: keyword 'fall' found!
[i] Domain Admins: 4 users found
[i] Enterprise Admins: 1 users found
[i] Forest Admins: 0 users found
[i] Locked Users: 0 found
[i] Disabled Users: 2 found
[i] Groups: 45 found
[i] Domain Sites: 1 found
[i] Domain Subnets: 0 found
[i] Domain Computers: 17 found
[i] Deligated Users: 0 found
[i] Users with passwords not set to expire: 6 found
[i] Machine Accounts with passwords older than 45 days: 18 found
[i] Domain OUs: 8 found
[i] Domain Account Policy found
[i] Domain GPOs: 7 found
[i] FSMO Roles: 3 found
[i] SPNs: 122 found
[i] LAPS passwords: 0 found
[i] GPP enumeration starting. This can take a bit...
[i] GPP passwords: 7 found
[i] CSVs written to 'csv' directory in C:\Users\Administrator\Desktop
[i] Execution took 1.4217256s...
[i] Exiting...

Functionality
StartTLS and TLS (tls.Client func) connections supported. Connections over TLS are default. All output goes to CSVs and are created in /csv/ in the current working directory. Dumps:
  • Domain users. Also searches Description for keywords and prints to a seperate csv ex. "Password" was found in the domain user description.
  • Users in priveleged user groups (DA, EA, FA).
  • Users with passwords not set to expire.
  • User accounts that have been locked or disabled.
  • Machine accounts with passwords older than 45 days.
  • Domain Computers.
  • Domain Controllers.
  • Sites and Subnets.
  • SPNs and includes csv flag if domain admin (a flag to note SPNs that are DAs in the SPN CSV output).
  • Trusted domain relationships.
  • Domain Groups.
  • Domain OUs.
  • Domain Account Policy.
  • Domain deligation users.
  • Domain GPOs.
  • Domain FSMO roles.
  • LAPS passwords.
  • GPP passwords. On Windows, defaults to mapping Q. If used, will try another mapping until success R, S, etc... On Linux, /mnt/goddi is used.


Related links


  1. Hack Tools For Mac
  2. Wifi Hacker Tools For Windows
  3. Nsa Hack Tools
  4. How To Make Hacking Tools
  5. Underground Hacker Sites
  6. Hack Tool Apk No Root
  7. Pentest Tools For Android
  8. Hacker Tools Software
  9. Pentest Tools Windows
  10. How To Install Pentest Tools In Ubuntu
  11. Hacking Tools 2020
  12. Tools 4 Hack
  13. Pentest Tools For Mac
  14. Hack Tools 2019
  15. New Hack Tools
  16. Kik Hack Tools
  17. Hacker Tools Github
  18. Pentest Tools Alternative
  19. Hack Tools For Windows
  20. Hacker Tools For Pc
  21. Pentest Tools Port Scanner
  22. Hacker Tools For Pc
  23. World No 1 Hacker Software
  24. Pentest Tools Github
  25. Hack Tools Pc
  26. Hacker Tools Github
  27. Hak5 Tools
  28. Pentest Tools Windows
  29. Hacker Tools For Ios
  30. Pentest Tools Find Subdomains
  31. Hacking Tools Free Download
  32. World No 1 Hacker Software
  33. Hacking Tools Windows
  34. Blackhat Hacker Tools
  35. Hacking Tools For Windows 7
  36. Hack Tools For Windows
  37. Pentest Reporting Tools
  38. Hacks And Tools
  39. Pentest Tools Website
  40. Pentest Tools Android
  41. Pentest Tools Android
  42. Hacker Tools 2020
  43. Pentest Tools Subdomain
  44. Ethical Hacker Tools
  45. Hacking Tools Github
  46. Nsa Hack Tools Download
  47. Pentest Tools Download
  48. Hack Tools
  49. Hacking Tools Download
  50. Hacker Tools 2020
  51. Hacker Security Tools
  52. Github Hacking Tools
  53. Free Pentest Tools For Windows
  54. Hack Tools 2019
  55. Beginner Hacker Tools
  56. Pentest Tools List
  57. Android Hack Tools Github
  58. What Is Hacking Tools
  59. Hacker Tools Windows
  60. Hacking Apps
  61. Hacker Tools Mac
  62. Hacker Tools Free
  63. Pentest Tools Tcp Port Scanner
  64. Hacking Tools Download
  65. Pentest Tools
  66. Nsa Hacker Tools
  67. Hacker Tools For Pc
  68. Hacking Tools 2020
  69. Pentest Tools Kali Linux
  70. Pentest Tools Website Vulnerability
  71. Hack Tools
  72. Hacking Tools Usb
  73. Hacking Tools For Pc
  74. Hacker Tools Software
  75. Pentest Tools List
  76. Hacking Tools Mac
  77. Black Hat Hacker Tools
  78. What Is Hacking Tools
  79. Hacking Tools Mac
  80. What Are Hacking Tools
  81. Hacking Tools For Windows 7
  82. Hacking Tools Mac
  83. Install Pentest Tools Ubuntu
  84. Pentest Tools Nmap
  85. Hack Tools For Pc
  86. Hacking Tools For Kali Linux
  87. Hacker Tools Github
  88. Physical Pentest Tools
  89. Hacker Tools 2020
  90. Pentest Tools Tcp Port Scanner
  91. Hacking Tools Mac
  92. Black Hat Hacker Tools
  93. Tools For Hacker
  94. Usb Pentest Tools
  95. Usb Pentest Tools
  96. Hacking Tools
  97. Hacking Tools Hardware
  98. Hacker Tools For Mac
  99. Pentest Tools Online
  100. Hacking Tools For Windows Free Download
  101. Install Pentest Tools Ubuntu
  102. Pentest Tools Nmap
  103. Hack Tools Online
  104. Pentest Tools Open Source
  105. Pentest Tools List
  106. Best Pentesting Tools 2018
  107. Hacking Tools Hardware
  108. Hacker Tools Free
  109. Nsa Hack Tools Download
  110. How To Install Pentest Tools In Ubuntu
  111. Best Hacking Tools 2019
  112. Free Pentest Tools For Windows
  113. Computer Hacker
  114. Hacking Tools Download
  115. Hackers Toolbox
  116. Hack Tools For Windows
  117. Hacking Tools Kit
  118. Hacking Tools Download
  119. Hacker Tools 2019
  120. Hack Tool Apk
  121. Pentest Tools Nmap
  122. Computer Hacker
  123. Hackrf Tools
  124. Pentest Tools For Windows
  125. Pentest Tools For Android
  126. Hacking Tools Windows 10
  127. Hacking Tools Mac
  128. Hacker Tools Apk
  129. Hacking Tools
  130. Hack Tools Download
  131. Nsa Hacker Tools
  132. What Is Hacking Tools
  133. Hacker Tools For Mac
  134. Best Pentesting Tools 2018
  135. Pentest Recon Tools
  136. Pentest Tools For Windows
  137. Ethical Hacker Tools
  138. Hacker Search Tools
  139. Pentest Tools Port Scanner
  140. Hacking Apps
  141. Pentest Tools Subdomain
  142. Physical Pentest Tools
Publicado por en

No hay comentarios:

Publicar un comentario

Suscribirse a: Enviar comentarios (Atom)