-
Notifications
You must be signed in to change notification settings - Fork 388
live smb dcsync command
skelsec edited this page Apr 14, 2021
·
1 revision
Performs DCSYNC attack, extracts all hashes and kerberos keys from the domain controller using DRSUAPI
None
- User context which has getchanges/getchangesall rights.
None
-
host: IP or hostname of the domain controller -
--username: Optional, the username of the user to get the secrets of. If empty then all users will be targeted -
-oor--outfile: Writes the secrets to the specified file
-
pypykatz live smb dcsync win2019ad.test.corp: Performs DCSYNC